CNNVD-202510-3425 Information
CNNVD ID
CNNVD-202510-3425
Related CVE
- CNNVD Published: 2025-10-24
Description (Chinese)
Dell Storage Manager和Dell Storage Center都是美国戴尔(Dell)公司的产品。Dell Storage Manager是一个集中式存储管理平台,支持Dell EMC全系列存储系统的配置、监控和自动化运维。Dell Storage Center是一个企业级存储系统管理平台。 Dell Storage Manager和Dell Storage Center 20.1.20版本存在代码问题漏洞,该漏洞源于XML外部实体引用限制不当,可能导致未经授权的访问。
Description (English)
Dell Storage Manager and Dell Storage Center are products of Dell Corporation. Dell Store Manager is a centralized storage management platform that supports the configuration, monitoring and automation of Dell EMC ’ s entire storage system. Dell Storage Center is an enterprise-level storage system management platform. There is a code problem loophole in version 20.1.20 of Dell Storage Manager and Dell Storage Center, which stems from inappropriate reference restrictions by an external XML entity and may lead to unauthorized access.
Hazard Level
High
Vulnerability Type
代码问题
Affected Vendor
戴尔
Published
2025-10-24
Last Modified
2026-02-24