CVE-2025-21104

MEDIUM Year: 2025
CVSS v3 Score
4.3
Medium
Weakness Type
CWE-601
View all →

Vulnerability Description

Dell NetWorker, versions prior to 19.12.0.1 and versions prior to 19.11.0.4, contain(s) an Open Redirect Vulnerability in NMC. An unauthenticated attacker with remoter access could potentially exploit this vulnerability, leading to a targeted application user being redirected to arbitrary web URLs. The vulnerability could be leveraged by attackers to conduct phishing attacks that cause users to divulge sensitive information.

Related Vulnerabilities

CVE-2018-11784

MEDIUM
CVSS:4.3(Medium)

When the default servlet in Apache Tomcat versions 9.0.0.M1 to 9.0.11, 8.5.0 to 8.5.33 and 7.0.23 to 7.0.90 returned a redirect to a directory (e.g. redirecting to '/foo/' when the user requested '/fo...

CWE-6012018

CVE-2018-5304

MEDIUM
CVSS:4.3(Medium)

An issue was discovered on the Impinj Speedway Connect R420 RFID Reader before 2.2.2. The affected web interface is vulnerable to ClickJacking or UI Redressing: it is possible to access the web applic...

CWE-6012018

CVE-2019-14403

MEDIUM
CVSS:4.3(Medium)

cPanel before 78.0.18 offers an open mail relay because of incorrect domain-redirect routing (SEC-483).

CWE-6012019

CVE-2019-1954

MEDIUM
CVSS:4.3(Medium)

A vulnerability in the web-based management interface of Cisco Webex Meetings Server Software could allow an unauthenticated, remote attacker to redirect a user to an undesired web page. The vulnerabi...

CWE-6012019

CVE-2020-1059

MEDIUM
CVSS:4.3(Medium)

A spoofing vulnerability exists when Microsoft Edge does not properly parse HTTP content, aka 'Microsoft Edge Spoofing Vulnerability'.

CWE-6012020

CVE-2020-3311

MEDIUM
CVSS:4.3(Medium)

A vulnerability in the web interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. The vulnerability i...

CWE-6012020