Primary

Context

Dell Storage Manager Improper Restriction of XML External Entity Reference Vulnerability

Vulnerability

Patched

An improper restriction of XML external entity reference vulnerability has been identified in Dell Storage Center - Dell Storage Manager, version 20.1.20. This vulnerability allows a low-privileged attacker with remote access to potentially exploit the issue, leading to unauthorized access.

Impact

Exploitation of this vulnerability could result in unauthorized access to the affected system.

Remediation

Users are advised to update to Dell Storage Manager version 2020 R1.21 or later. Instructions for downloading the updated version are available on the Dell Support website.

Added: Oct 24, 2025, 2:17 PM

Updated: Oct 24, 2025, 2:17 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

5.0

exploitability

4.9

remediation

7.7

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

5.0

exploitability

4.9

remediation

7.7

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell Storage Manager Improper Restriction of XML External Entity Reference Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Dell Storage Manager

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating