Bartosz Reginiak

**Name of the Vulnerable Software and Affected Versions** VMware Aria Automation (affected versions not specified) **Description** The issue is a server-side request forgery (SSRF) vulnerability. A malicious actor with "Organization Member" access to Aria Automation may exploit this vulnerability to enumerate internal services running on the host or network. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Dell OpenManage Enterprise versions 3.8.3 and prior **Description** The issue is related to an improper authorization vulnerability. A remote authenticated malicious user with low privileges may potentially exploit this vulnerability to bypass blocked functionalities and perform unauthorized actions. **Recommendations** For Dell OpenManage Enterprise versions 3.8.3 and prior, update to a version later than 3.8.3 to resolve the issue.