Primary

Context

Dell UCC Edge Blind Server-Side Request Forgery Vulnerability

Vulnerability

A blind server-side request forgery (SSRF) vulnerability has been identified in Dell UCC Edge version 2.3.0. This vulnerability allows an unauthenticated attacker with local access to exploit the application by manipulating server-side requests, potentially leading to unauthorized actions or information disclosure on behalf of the server.

Impact

Exploitation of this vulnerability could lead to unauthorized server-side requests being made, which could be used to access internal resources or services that are not normally exposed to the public.

Remediation

Users can upgrade to Dell UCC Edge version 3.0.0 or later to address this vulnerability. The latest version can be downloaded from the Dell UCC Edge product support page.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.7

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.7

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell UCC Edge Blind Server-Side Request Forgery Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating