cbcvebase.

Dell Recoverpoint For Vms vulnerabilities

4 known vulnerabilities affecting dell/recoverpoint_for_vms.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2024-22426P2CRITICALCVSS 9.8v5.3 SP2v5.3 SP2 P1+5 more2024-02-16
CVE-2024-22426 [CRITICAL] CWE-434 CVE-2024-22426: Dell RecoverPoint for Virtual Machines 5.3.x, 6.0.SP1 contains an OS Command injection vulnerability Dell RecoverPoint for Virtual Machines 5.3.x, 6.0.SP1 contains an OS Command injection vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability, leading to execute arbitrary operating system commands, which will get executed in the context of the root user, resulting in a complete system compromise.
nvd
CVE-2024-22425P3CRITICALCVSS 9.8v5.3 SP2v5.3 SP2 P1+5 more2024-02-16
CVE-2024-22425 [CRITICAL] CWE-307 CVE-2024-22425: Dell RecoverPoint for Virtual Machines 5.3.x, 6.0.SP1 contains a brute force/dictionary attack vulne Dell RecoverPoint for Virtual Machines 5.3.x, 6.0.SP1 contains a brute force/dictionary attack vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability, leading to launch a brute force attack or a dictionary attack against the RecoverPoint login form. This allows attackers to brute-force the password of valid
nvd
CVE-2025-21105P3HIGHCVSS 7.8v6.0 SP1v6.0 SP1 P1+1 more2025-02-20
CVE-2025-21105 [HIGH] CWE-284 CVE-2025-21105: Dell RecoverPoint for Virtual Machines 6.0.X contains a command execution vulnerability. A Low privi Dell RecoverPoint for Virtual Machines 6.0.X contains a command execution vulnerability. A Low privileged malicious user with local access could potentially exploit this vulnerability by running the specific binary and perform any administrative action permitted by it resulting in shutting down the server, modifying the configuration leading to gain a
nvd
CVE-2025-21106P4MEDIUMCVSS 5.5v6.0 SP1v6.0 SP1 P1+1 more2025-02-20
CVE-2025-21106 [MEDIUM] CWE-276 CVE-2025-21106: Dell Recover Point for Virtual Machines 6.0.X contains a Weak file system permission vulnerability. Dell Recover Point for Virtual Machines 6.0.X contains a Weak file system permission vulnerability. A low privileged Local attacker could potentially exploit this vulnerability, leading to impacting only non-sensitive resources in the system.
nvd
Dell Recoverpoint For Vms vulnerabilities | cvebase