CVE-2025-23379

Name of the Vulnerable Software and Affected Versions Dell Storage Center - Dell Storage Manager version 21.0.20

Description The issue is related to an Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This could allow an unauthenticated attacker with adjacent network access to potentially exploit the issue, leading to script injection.

Recommendations For version 21.0.20, consider restricting access to the web interface of Dell Storage Manager to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.