Primary

Context

Dell OpenManage Enterprise Insertion of Sensitive Information into Log File Vulnerability

Vulnerability

Patched

A vulnerability allowing the insertion of sensitive information into log files has been identified in Dell OpenManage Enterprise versions 3.10, 4.0, 4.1, and 4.2. This issue arises in the Backup and Restore component, where a low-privileged attacker with remote access could exploit the vulnerability, leading to unauthorized information exposure.

Impact

Exploitation of this vulnerability could result in unauthorized access to sensitive information.

Remediation

Users can upgrade to Dell OpenManage Enterprise version 4.3 or later to address this vulnerability. Version 4.3.2 is available on the Dell Support website.

Added: Aug 14, 2025, 4:04 PM

Updated: Aug 14, 2025, 4:04 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

4.9

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

4.9

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell OpenManage Enterprise Insertion of Sensitive Information into Log File Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Dell OpenManage Enterprise

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating