CVE-2025-26484

Medium CVSS 5.5

Overview

Dell CloudLink, versions 8.0 through 8.1.1, contains an Improper Restriction of XML External Entity Reference vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Denial of service.

CWE: CWE-611 Published: 2025-08-14T15:15:32.460

Risk analysis

This vulnerability is rated 🟡 MEDIUM.

CVSS: 5.5 (MEDIUM)
Detected tags: dos, xxe (tag impact: MODERATE)

Recommended actions:

Rate limiting, resource quotas and circuit breakers.
Disable external entities in XML parsers; use safe libraries.

Overview

Recommended tools

Tags