Home

Description

Dell NetWorker, versions prior to 19.12.0.1 and versions prior to 19.11.0.4, contain(s) an Open Redirect Vulnerability in NMC. An unauthenticated attacker with remoter access could potentially exploit this vulnerability, leading to a targeted application user being redirected to arbitrary web URLs. The vulnerability could be leveraged by attackers to conduct phishing attacks that cause users to divulge sensitive information.

PUBLISHED Reserved 2024-11-22 | Published 2025-03-13 | Updated 2025-04-10 | Assigner dell




MEDIUM: 4.3CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Problem types

CWE-601: URL Redirection to Untrusted Site ('Open Redirect')

Product status

Default status
unaffected

Any version
affected

Any version
affected

References

www.dell.com/...for-http-host-header-injection-vulnerability vendor-advisory

cve.org (CVE-2025-21104)

nvd.nist.gov (CVE-2025-21104)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.