{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-11T14:02:10.114","vulnerabilities":[{"cve":{"id":"CVE-2025-21120","sourceIdentifier":"security_alert@emc.com","published":"2025-08-04T19:15:30.210","lastModified":"2026-02-25T15:14:51.750","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Dell Avamar, versions prior to 19.10 SP1 with patch 338904, contains a Trusting HTTP Permission Methods on the Server-Side vulnerability in Security. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Information exposure."},{"lang":"es","value":"Dell Avamar, versiones anteriores a la 19.12 con el parche 338905, excepto la versión 19.10SP1 con el parche 338904, contiene una vulnerabilidad de seguridad relacionada con los métodos de permisos HTTP de confianza en el servidor. Un atacante con pocos privilegios y acceso remoto podría explotar esta vulnerabilidad, lo que provocaría la exposición de información."}],"metrics":{"cvssMetricV31":[{"source":"security_alert@emc.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":5.5},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security_alert@emc.com","type":"Secondary","description":[{"lang":"en","value":"CWE-650"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.4:*:*:*:virtual:esxi:*:*","matchCriteriaId":"4793C917-302E-4ACD-A648-7D87BB79420C"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.4:*:*:*:virtual:vmware:*:*","matchCriteriaId":"0F134C17-57A7-4501-BAC6-44D684B40274"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.4:*:*:*:virtual:vsphere:*:*","matchCriteriaId":"C2AA1AF6-BBEB-474B-BFDF-65BDA31A0BEF"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.7:*:*:*:virtual:esxi:*:*","matchCriteriaId":"7323A49B-13FA-46F0-8436-32048778B2D3"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.7:*:*:*:virtual:vmware:*:*","matchCriteriaId":"AAD1F4F9-0475-4577-B999-F7A37ADCBE85"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.7:*:*:*:virtual:vsphere:*:*","matchCriteriaId":"8997C078-ABE6-4E5B-8196-B2EC50E93402"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.8:*:*:*:virtual:esxi:*:*","matchCriteriaId":"00E6EB2D-8D7E-4976-9759-EEC9F7521F92"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.8:*:*:*:virtual:vmware:*:*","matchCriteriaId":"3B112013-C0CF-45C5-A4FF-8B8D4D56B18E"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.8:*:*:*:virtual:vsphere:*:*","matchCriteriaId":"9E4DFB88-112F-4BC9-8CED-72AE1B508B62"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.9:*:*:*:virtual:esxi:*:*","matchCriteriaId":"D2E97D6E-1B0B-42D2-B815-9C6832B70332"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.9:*:*:*:virtual:vmware:*:*","matchCriteriaId":"70E453E0-248B-406B-9493-91B956FDC0C7"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.9:*:*:*:virtual:vsphere:*:*","matchCriteriaId":"DFF960D2-6E01-4E78-ADE5-11352CAE4730"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.10:-:*:*:virtual:esxi:*:*","matchCriteriaId":"B4DF4788-34D6-4EF5-B7F4-A0EEFFB18D75"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.10:-:*:*:virtual:vmware:*:*","matchCriteriaId":"EA32AB1C-4FB3-4C06-8FFE-1E81CCD8ED57"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.10:-:*:*:virtual:vsphere:*:*","matchCriteriaId":"3F790002-847B-4AE3-86D3-62B8B54875E5"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.10:sp1:*:*:virtual:esxi:*:*","matchCriteriaId":"29E8D84D-473C-4A78-9D77-72E09C29AF2C"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.10:sp1:*:*:virtual:vmware:*:*","matchCriteriaId":"EB62B466-DD2D-4731-8643-43A254BC0BF8"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.10:sp1:*:*:virtual:vsphere:*:*","matchCriteriaId":"BB51EA7E-E7A2-45B2-BBE9-8F9847EA6F2B"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.12:*:*:*:virtual:esxi:*:*","matchCriteriaId":"ACA48457-DD33-4A0A-8A6D-616FAE085375"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.12:*:*:*:virtual:vmware:*:*","matchCriteriaId":"5FFD635A-85B8-4BA9-8514-1360D3021111"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:avamar:19.12:*:*:*:virtual:vsphere:*:*","matchCriteriaId":"E4EEAF2A-6F75-4D8C-B3A6-E3E35FAAD11F"}]}]}],"references":[{"url":"https://www.dell.com/support/kbdoc/en-us/000347698/dsa-2025-271-security-update-for-dell-avamar-and-dell-avamar-virtual-edition-multiple-vulnerabilities","source":"security_alert@emc.com","tags":["Vendor Advisory"]}]}}]}