Vulnerability Details CVE-2025-23377
Dell PowerProtect Data Manager Reporting, version(s) 19.17, 19.18 contain(s) an Improper Encoding or Escaping of Output vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability to inject arbitrary web script or html in reporting outputs.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 1.8%
CVSS Severity
CVSS v3 Score 4.2
Products affected by CVE-2025-23377
-
cpe:2.3:a:dell:powerprotect_data_manager:19.17
-
cpe:2.3:a:dell:powerprotect_data_manager:19.18