{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-22T08:56:54.539","vulnerabilities":[{"cve":{"id":"CVE-2025-46699","sourceIdentifier":"security_alert@emc.com","published":"2026-01-23T10:15:52.847","lastModified":"2026-01-28T18:59:26.283","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Dell Data Protection Advisor, versions prior to 19.12, contains an Improper Neutralization of Special Elements Used in a Template Engine vulnerability in the Server. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Information exposure."},{"lang":"es","value":"Dell Data Protection Advisor, versiones anteriores a la 19.12, contiene una vulnerabilidad de neutralización incorrecta de elementos especiales utilizados en un motor de plantillas en el servidor. Un atacante en remoto con pocos privilegios podría, potencialmente, explotar esta vulnerabilidad, lo que podría llevar a la exposición de información."}],"metrics":{"cvssMetricV31":[{"source":"security_alert@emc.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security_alert@emc.com","type":"Primary","description":[{"lang":"en","value":"CWE-1336"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:dell:data_protection_advisor:*:*:*:*:*:*:*:*","versionStartIncluding":"19.9","versionEndExcluding":"19.12","matchCriteriaId":"F993597A-30A5-4D7B-83D9-162CC1899B78"}]}]}],"references":[{"url":"https://www.dell.com/support/kbdoc/en-us/000281732/dsa-2025-075-security-update-for-dell-data-protection-advisor-for-multiple-component-vulnerabilities","source":"security_alert@emc.com","tags":["Vendor Advisory"]}]}}]}