Path Traversal Vulnerability in Dell Storage Manager
CVE-2025-22479

4.3MEDIUM

Key Information:

Vendor: Dell
Status: Dell Storage Center - Dell Storage Manager
Vendor: CVE Published:; 6 May 2025

What is CVE-2025-22479?

Dell Storage Manager versions 20.0.21 are susceptible to a path traversal vulnerability, which could allow an unauthenticated attacker with adjacent network access to exploit the system. This vulnerability may enable the attacker to perform unauthorized operations, such as script injection, compromising the integrity of the system. It is crucial for organizations using this product to apply the necessary security updates to mitigate the risk associated with this vulnerability. Stay informed to protect your network infrastructure.

Affected Version(s)

Dell Storage Center - Dell Storage Manager < 2020 R1.21

References

https://www.dell.com/support/kbdoc/en-us/000317318/dsa-20...

vendor-advisory

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 6, 2025
Vulnerability Reserved
Jan 7, 2025

Credit

Dell would like to thank redfr0g for reporting this issue.