Description
Dell Disk Library for Mainframe, version(s) DLm 8700/2700 contain(s) a Server-Side Request Forgery (SSRF) vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Server-side request forgery.
Published: 2026-04-29
Score: 4.3 Medium
EPSS: n/a
KEV: No
Impact: Server‑Side Request Forgery
Action: Patch
AI Analysis

Impact

The vulnerability allows a low‑privileged attacker with remote access to the Dell Disk Library for Mainframe to perform a server‑side request forgery. An attacker could trick the library into making unrestricted requests to internal resources, potentially exposing confidential information or facilitating further compromise.

Affected Systems

The vulnerability affects Dell Disk Library for Mainframe products DLm2700 and DLm8700. No specific firmware or software version numbers are listed beyond the product family; the public advisory recommends updating these mainframe disk libraries.

Risk and Exploitability

The CVSS score of 4.3 indicates low severity. The EPSS score is not available and the vulnerability is not currently listed in the CISA KEV catalog. The attack vector is remote; a low‑privileged user can trigger the SSRF. Exploitation does not require administrative privileges but requires network connectivity to the library.

Generated by OpenCVE AI on April 29, 2026 at 04:50 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the Dell Disk Library for Mainframe security update published by Dell in the linked advisory.
  • Reduce exposure by restricting remote access to the library only to trusted hosts or networks.
  • Implement network segmentation or firewall rules to block unauthorized internal requests that the library might make.

Generated by OpenCVE AI on April 29, 2026 at 04:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 29 Apr 2026 05:00:00 +0000

Type Values Removed Values Added
Title SSRF Vulnerability in Dell Disk Library for Mainframe

Wed, 29 Apr 2026 03:45:00 +0000

Type Values Removed Values Added
Description Dell Disk Library for Mainframe, version(s) DLm 8700/2700 contain(s) a Server-Side Request Forgery (SSRF) vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Server-side request forgery.
Weaknesses CWE-918
References
Metrics cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: dell

Published:

Updated: 2026-04-29T03:54:49.237Z

Reserved: 2026-01-16T06:05:50.872Z

Link: CVE-2026-23773

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-04-29T04:16:40.867

Modified: 2026-04-29T04:16:40.867

Link: CVE-2026-23773

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-29T05:00:03Z

Weaknesses