August 15, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
North Korean APT Kimsuky aka Black Banshee – Active IOCs
July 22, 2025
Multiple Adobe Products Vulnerabilities
July 22, 2025
North Korean APT Kimsuky aka Black Banshee – Active IOCs
July 22, 2025
Multiple Adobe Products Vulnerabilities
July 22, 2025
Severity
High
Analysis Summary
CVE-2025-30477 CVSS:4.4
Dell PowerScale OneFS, versions prior to 9.11.0.0, contains a use of a broken or risky cryptographic algorithm vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure.
CVE-2025-36603 CVSS:4.2
Dell AppSync, version(s) 4.6.0.0, contains an Improper Restriction of XML External Entity Reference vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure and Information tampering.
Impact
- Information Disclosure
Indicators of Compromise
CVE
CVE-2025-30477
CVE-2025-36603
Affected Vendors
- Dell
Affected Products
- Dell PowerScale OneFS
- Dell AppSync 4.6.0.0
Remediation
Refer to Dell Website for patch, upgrade, or suggested workaround information.