CNNVD-202508-1657 Information

Aug 14, 2025 cve

CNNVD ID

CNNVD-202508-1657

CVE-2025-38745

CNNVD Published: 2025-08-14

Description (Chinese)

Dell OpenManage Enterprise是美国戴尔（Dell）公司的一款用于IT基础架构管理的易于使用的一对多系统管理控制台。该软件支持一个控制台中经济高效地为 Dell EMC PowerEdge 服务器提供全面的生命周期管理。 Dell OpenManage Enterprise 4.2及之前版本存在日志信息泄露漏洞，该漏洞源于备份和恢复功能中敏感信息插入日志文件，可能导致信息泄露。

Description (English)

Dell OpenManage Enterprise is an easy-to-use multisystem management console for the IT infrastructure management of Dell, United States. The software supports the cost-effective and comprehensive life-cycle management of the Dell EMC PowerEdge server in a console. Dell OpenManage Enterprise 4.2 and earlier versions have leaks of log information, which stem from the insertion of sensitive information into log files in the backup and recovery function, which may lead to leaks.

Hazard Level

High

Vulnerability Type

日志信息泄露

Affected Vendor

戴尔

Published

2025-08-14

Last Modified

2026-02-24

References

https://www.dell.com/support/kbdoc/en-us/000356351/dsa-2025-314-security-update-for-dell-openmanage-enterprise-vulnerability https://nvd.nist.gov/vuln/detail/CVE-2025-38745

Patch

https://www.dell.com/support/kbdoc/en-us/000356351/dsa-2025-314-security-update-for-dell-openmanage-enterprise-vulnerability

Share on: