How severe is CVE-2025-23376?

CVE-2025-23376 has a CVSS v3 score of 2.3 (LOW).

CVE-2025-23376

Name: powerprotect_data_manager
Author: dell

2.3LOW

Dell PowerProtect Data Manager Reporting, version(s) 19.16, 19.17, 19.18, contain(s) an Improper Neutralization of Special Elements Used in a Template Engine vulnerability. A high privileged attacker

Published: 4/28/2025Updated: 5/13/2025

Description

Dell PowerProtect Data Manager Reporting, version(s) 19.16, 19.17, 19.18, contain(s) an Improper Neutralization of Special Elements Used in a Template Engine vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to information disclosure.

AI AnalysisPowered by AI

Affected Products

dellpowerprotect_data_manager

19.16

dellpowerprotect_data_manager

19.17

dellpowerprotect_data_manager

19.18

References

https://www.dell.com/support/kbdoc/en-us/000311083/dsa-2025-062-security-update-for-dell-powerprotect-data-manager-multiple-security-vulnerabilities
Vendor Advisory