CVE-2025-22474 MEDIUM

CVE-2025-22474

Vendor Dell

Product SmartFabric OS10 Software

Weakness CWE-918 · SSRF

Published March 17, 2025

Last update March 17, 2025

View on NVD All CVEs

CVSS base score

6.8/10

Attack vector Network

Attack complexity Low

Privileges required High

User interaction None

Confidentiality High

Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

What the vulnerability does

01Description

Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) a Server-Side Request Forgery (SSRF) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Server-side request forgery.

Key dates

02Disclosure timeline

March 17, 2025 CVE published

March 17, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-22474 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/918.html

Related vulnerabilities

Identifiers

CVE CVE-2025-22474

CWE CWE-918

CVSS 6.8 / MEDIUM

Affected versions

Vendor Dell

Product SmartFabric OS10 Software

Affected 10.5.4.x

Vendor Dell

Product SmartFabric OS10 Software

Affected 10.5.5.x

Vendor Dell

Product SmartFabric OS10 Software

Affected 10.5.6.x

Vendor Dell

Product SmartFabric OS10 Software

Affected 10.6.0.x

CVE-2025-22474

01Description

02Disclosure timeline

03References

04Related CVE