📦 Powerprotect Data Manager

Dell PowerProtect Data Manager versions before 19.22 have an incorrect privilege assignment vulnerability that allows low-privileged remote attackers to elevate their privileges. This affects organiza...

This vulnerability allows local low-privileged attackers to execute arbitrary operating system commands on Dell PowerProtect Data Manager Hyper-V systems through OS command injection. It affects Dell ...

Dell PowerProtect Data Manager versions 19.19 and 19.20 on Hyper-V have incorrect default permissions that allow local low-privileged attackers to elevate their privileges. This affects organizations ...

Dell PowerProtect Data Manager Generic Application Agent versions 19.19 and 19.20 have incorrect default permissions that allow local low-privileged attackers to execute arbitrary code. This affects o...

Dell PowerProtect Data Manager versions 19.15 and earlier contain an OS command injection vulnerability that allows remote authenticated high-privileged attackers to execute arbitrary operating system...

Dell PowerProtect Data Manager versions before 19.22 have a REST API vulnerability where improper verification of communication channels allows high-privileged attackers with remote access to bypass p...

Dell PowerProtect Data Manager versions before 19.22 have a REST API vulnerability where improper verification of communication channels allows high-privileged attackers with remote access to bypass p...

Dell PowerProtect Data Manager versions 19.19 and 19.20 for Hyper-V store passwords in plaintext, allowing high-privileged local attackers to steal credentials. This could lead to unauthorized access ...

This vulnerability allows a high-privileged attacker with local access to inject malicious web scripts or HTML into Dell PowerProtect Data Manager Reporting outputs. It affects versions 19.17 and 19.1...