Open Redirect Vulnerability in Dell NetWorker NMC
CVE-2025-21104

4.3MEDIUM

Key Information:

Vendor: Dell
Status: Networker Management Console
Vendor: CVE Published:; 13 March 2025

Summary

Dell NetWorker versions 19.11.0.3 and earlier are susceptible to an Open Redirect vulnerability within the NetWorker Management Console (NMC). This issue allows an unauthenticated attacker to manipulate web requests, potentially redirecting users to unauthorized or malicious web pages. Exploiting this vulnerability could facilitate phishing attempts, where users may be tricked into revealing sensitive information. Organizations using affected versions of Dell NetWorker should prioritize applying necessary updates to mitigate the risk.

Affected Version(s)

NetWorker Management Console <= 19.11.0.3

NetWorker Management Console <= 19.12

References

https://www.dell.com/support/kbdoc/en-us/000294392/dsa-20...

vendor-advisory

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Mar 13, 2025
Vulnerability Reserved
Nov 22, 2024