CVE-2025-43943 – Dell Cloud Disaster Recovery versions before 19... (How to Fix)

Q: What is the severity of CVE-2025-43943?

CVE-2025-43943 has a CVSS score of 6.7 (MEDIUM). Dell Cloud Disaster Recovery versions before 19.20 contain an OS command injection vulnerability that allows high-privileged local attackers to execute arbitrary commands with root privileges. This affects organizations using vulnerable versions of Dell's disaster recovery software. Attackers need local access and administrative credentials to exploit this vulnerability.

📋 TL;DR

Dell Cloud Disaster Recovery versions before 19.20 contain an OS command injection vulnerability that allows high-privileged local attackers to execute arbitrary commands with root privileges. This affects organizations using vulnerable versions of Dell's disaster recovery software. Attackers need local access and administrative credentials to exploit this vulnerability.

💻 Affected Systems

Products:

Dell Cloud Disaster Recovery

Versions: All versions prior to 19.20

Operating Systems: Not specified - likely multiple platforms supported by the software

Default Config Vulnerable: ⚠️ Yes

Notes: Requires local access and high-privileged credentials. The vulnerability exists in the software's command processing functionality.

📦 What is this software?

Cloud Disaster Recovery by Dell

View all CVEs affecting Cloud Disaster Recovery →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise with root-level command execution, allowing data theft, ransomware deployment, or lateral movement across the network.

🟠

Likely Case

Privilege escalation leading to unauthorized administrative access, configuration changes, or data exfiltration from the disaster recovery system.

🟢

If Mitigated

Limited impact due to network segmentation, strict access controls, and monitoring preventing successful exploitation.

🌐 Internet-Facing: LOW - Requires local access and high privileges, making remote exploitation unlikely without additional vulnerabilities.

🏢 Internal Only: HIGH - Malicious insiders or compromised administrative accounts could exploit this to gain root access on affected systems.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires local access and administrative privileges. No public exploit code is currently available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Version 19.20 or later

Vendor Advisory: https://www.dell.com/support/kbdoc/en-us/000372457/dsa-2025-354-security-update-for-dell-cloud-disaster-recovery-rce-vulnerability

Restart Required: No

Instructions:

1. Access Dell Cloud Disaster Recovery management console. 2. Navigate to software updates section. 3. Download and apply version 19.20 or later. 4. Verify successful update through version check.

🔧 Temporary Workarounds

Restrict Local Access

all

Limit physical and remote local access to systems running Dell Cloud Disaster Recovery to authorized administrators only.

Implement Least Privilege

all

Review and reduce administrative privileges to only essential personnel who require access to the disaster recovery system.

🧯 If You Can't Patch

Implement strict network segmentation to isolate Dell Cloud Disaster Recovery systems from critical infrastructure
Enhance monitoring and logging of administrative activities on affected systems

🔍 How to Verify

Check if Vulnerable:

Check the installed version of Dell Cloud Disaster Recovery software through the management interface or system documentation.

Check Version:

Check within Dell Cloud Disaster Recovery management interface or consult system documentation for version verification

Verify Fix Applied:

Confirm the software version is 19.20 or later through the management console or version check command.

📡 Detection & Monitoring

Log Indicators:

Unusual command execution patterns
Administrative privilege escalation attempts
Unexpected system configuration changes

Network Indicators:

Unusual outbound connections from disaster recovery system
Anomalous administrative access patterns

SIEM Query:

source="dell-disaster-recovery" AND (event_type="command_execution" OR privilege="root") AND status="success"

📊 Metadata

CVE ID: CVE-2025-43943

CVSS v3 Score: 6.7 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-78

EPSS Score: 0.03% exploit probability (7.3th percentile)

Published: September 25, 2025

Last Updated: January 16, 2026

🔗 References

https://www.dell.com/support/kbdoc/en-us/000372457/dsa-2025-354-security-update-for-dell-cloud-disaster-recovery-rce-vulnerability Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-43943, you might also want to check these: