CVE-2025-21103

Summary

Dell NetWorker Management Console, version(s) 19.11 through 19.11.0.3 & Versions prior to 19.10.0.7 contain(s) an improper neutralization of server-side vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerability and run arbitrary code on the server.

Affected Software

VendorProductVersion RangeStatus
DellNetWorker Management Console19.11 <= 19.11.0.3affected
DellNetWorker Management ConsoleN/A < 19.10.0.7affected

Weaknesses

  • CWE-97: CWE-97: Improper Neutralization of Server-Side Includes (SSI) Within a Web Page

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References