CVE-2025-23375

High

Dell PowerProtect Data Manager Reporting, version(s) 19.17, contain(s) an Incorrect Use of Privileged APIs vulnerability. A low privileged…

dell·CWE-648·Published 2025-04-28

CVSS

7.8

EPSS

0.00

KEV

Exploits

Vendor statements (1)

dell.com

cve.orgen

247 chars

Dell PowerProtect Data Manager Reporting, version(s) 19.17, contain(s) an Incorrect Use of Privileged APIs vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.

NVDes

260 chars

Dell PowerProtect Data Manager Reporting, versión 19.17, contiene una vulnerabilidad de uso incorrecto de API con privilegios. Un atacante con pocos privilegios y acceso local podría explotar esta vulnerabilidad, lo que provocaría una elevación de privilegios.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	NVD	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
3.1	Primary	cve.org	7.8	—	—	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
3.1	Secondary	NVD	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H