DSA-2025-457: Dell OpenManage Server Administrator (OMSA) Security Update for Apache Tomcat Uncontrolled Resource Consumption Vulnerability

Summary: Dell OpenManage Server Administrator (OMSA) remediation is available for an Apache Tomcat Uncontrolled Resource Consumption Vulnerability that could be exploited by malicious users to compromise the affected system. ...

This article applies to This article does not apply to This article is not tied to any specific product. Not all product versions are identified in this article.
Check out other resources

Impact

High

Details

Third-party Components

CVEs

More Information

Apache Tomcat 

CVE-2025-53506

See NVD link below for individual scores for each CVE.

https://nvd.nist.gov/This hyperlink is taking you to a website outside of Dell Technologies.

 

Dell Technologies recommends all customers consider both the CVSS base score and any relevant temporal and environmental scores that may impact the potential severity associated with a particular security vulnerability.

Affected Products & Remediation

Product

Software/Firmware

Affected Versions

Remediated Versions

Link

Dell OpenManage Server Administrator Managed Node for Windows

Apache Tomcat

Versions prior to 11.1.0.1

Version 11.1.0.1 or later

https://www.dell.com/support/home/drivers/DriversDetails?driverid=72Y17

Dell OpenManage Server Administrator Managed Node for RHEL 8.x

Apache Tomcat

Versions prior to 11.1.0.1

Version 11.1.0.1 or later

https://www.dell.com/support/home/drivers/DriversDetails?driverid=HFK1W

Dell OpenManage Server Administrator Managed Node for RHEL 9.x

Apache Tomcat

Versions prior to 11.1.0.1

Version 11.1.0.1 or later

https://www.dell.com/support/home/drivers/DriversDetails?driverid=CDDFC

Dell OpenManage Server Administrator Managed Node for SLES 15

Apache Tomcat

Versions prior to 11.1.0.1

Version 11.1.0.1 or later

https://www.dell.com/support/home/drivers/DriversDetails?driverid=TPMTR

 

Product

Software/Firmware

Affected Versions

Remediated Versions

Link

Dell OpenManage Server Administrator Managed Node for Windows

Apache Tomcat

Versions prior to 11.1.0.1

Version 11.1.0.1 or later

https://www.dell.com/support/home/drivers/DriversDetails?driverid=72Y17

Dell OpenManage Server Administrator Managed Node for RHEL 8.x

Apache Tomcat

Versions prior to 11.1.0.1

Version 11.1.0.1 or later

https://www.dell.com/support/home/drivers/DriversDetails?driverid=HFK1W

Dell OpenManage Server Administrator Managed Node for RHEL 9.x

Apache Tomcat

Versions prior to 11.1.0.1

Version 11.1.0.1 or later

https://www.dell.com/support/home/drivers/DriversDetails?driverid=CDDFC

Dell OpenManage Server Administrator Managed Node for SLES 15

Apache Tomcat

Versions prior to 11.1.0.1

Version 11.1.0.1 or later

https://www.dell.com/support/home/drivers/DriversDetails?driverid=TPMTR

 

After OMSA is installed, the Apache Tomcat version can be identified by using one of the methods below.  This can be used to verify that Apache Tomcat is upgraded to the recommended version as noted in CVE-2025-53506.

  • Open the "About" page on the Server Administrator GUI and locate the Apache Tomcat version
  • Use the CLI command "omreport about details=true" 

Revision History

Revision

Date

Description

1.0

2025-12-17

Initial Release

 

Related Information

Dell Security Advisories and Notices
Dell Vulnerability Response Policy
CVSS Scoring Guide

Legal Disclaimer

Affected Products

Dell OpenManage Server Administrator Version 8.4, Dell OpenManage Server Administrator Version 8.5, Dell OpenManage Server Administrator Version 9.0.1, Dell OpenManage Server Administrator Version 9.0.2 , Dell OpenManage Server Administrator Version 9.1, Dell OpenManage Server Administrator Version 8.3, Dell OpenManage Server Administrator Version 2.3, Dell OpenManage Server Administrator Version 5.0, Dell OpenManage Server Administrator Version 5.1, Dell OpenManage Server Administrator Version 5.2, Dell OpenManage Server Administrator Version 5.3, Dell OpenManage Server Administrator Version 5.4, Dell OpenManage Server Administrator Version 5.5, Dell OpenManage Server Administrator Version 6.0.1, Dell OpenManage Server Administrator Version 6.0.3, Dell OpenManage Server Administrator Version 6.1, Dell OpenManage Server Administrator Version 6.1.1, Dell OpenManage Server Administrator Version 6.2, Dell OpenManage Server Administrator Version 6.3, Dell OpenManage Server Administrator Version 6.4, Dell OpenManage Server Administrator Version 6.5, Dell OpenManage Server Administrator Version 6.5 A02, Dell OpenManage Server Administrator Version 7.0, Dell OpenManage Server Administrator Version 7.1, Dell OpenManage Server Administrator Version 7.2, Dell OpenManage Server Administrator Version 7.3, Dell OpenManage Server Administrator Version 7.4, Dell OpenManage Server Administrator Version 8.0.1, Dell OpenManage Server Administrator Version 8.0.2, Dell OpenManage Server Administrator Version 8.1, Dell OpenManage Server Administrator Version 8.2, Dell OpenManage Server Administrator Version 9.1.1, Dell OpenManage Server Administrator Version 10.0.1, Dell OpenManage Server Administrator Version 10.1.0.0, Dell OpenManage Server Administrator Version 10.2.0.0, Dell OpenManage Server Administrator Version 10.3.0.0, Dell OpenManage Server Administrator Version 11.1.0.0, Dell OpenManage Server Administrator Version 11.0.0.0, Dell OpenManage Server Administrator Version 11.0.1.0, Dell OpenManage Server Administrator Version 9.1.2, Dell OpenManage Server Administrator Version 9.2, Dell OpenManage Server Administrator Version 9.2.1, Dell OpenManage Server Administrator Version 9.3, Dell OpenManage Server Administrator Version 9.3.1, Dell OpenManage Server Administrator Version 9.3.2, Dell OpenManage Server Administrator Version 9.4, Dell OpenManage Server Administrator Version 9.5 ...
Article Properties
Article Number: 000404950
Article Type: Dell Security Advisory
Last Modified: 17 Dec 2025
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.