CVE-2025-22399

Name of the Vulnerable Software and Affected Versions: Dell UCC Edge version 2.3.0

Description: The issue concerns a Blind SSRF vulnerability in the Add Customer SFTP Server of Dell UCC Edge. An unauthenticated attacker with local access could exploit this, leading to Server-Side Request Forgery.

Recommendations: For Dell UCC Edge version 2.3.0, consider restricting access to the SFTP server to minimize the risk of exploitation until a patch is available. As a temporary workaround, limit local access to the system to reduce the potential for unauthenticated attackers to leverage this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.