CVE-2024-25971 Information

Description

Dell PowerProtect Data Manager version 19.15 contains an XML External Entity Injection vulnerability. A remote high privileged attacker could potentially exploit this vulnerability leading to information disclosure denial-of-service.

Reference

https://www.dell.com/support/kbdoc/en-us/000223556/dsa-2024-132-security-update-dell-power-protect-data-manager-for-multiple-security-vulnerabilities