Search criteria

2239 vulnerabilities

CVE-2026-49813 (GCVE-0-2026-49813)

Vulnerability from cvelistv5 – Published: 2026-07-03 14:18 – Updated: 2026-07-03 14:18
VLAI?
Summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper neutralization of special elements used in an OS command ('OS command Injection') vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary command execution.
CWE
  • CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Assigner
References
Impacted products
Vendor Product Version
Dell PowerProtect Data Domain Affected: 0 , < 8.8.0.0 or later (semver)
Affected: 0 , < 8.6.1.20 or later (semver)
Affected: 0 , < 8.3.1.40 or later (semver)
Affected: 0 , < 7.13.1.80 or later (semver)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerProtect Data Domain",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "8.8.0.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.6.1.20 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.3.1.40 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "7.13.1.80 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-07-02T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper neutralization of special elements used in an OS command (\u0027OS command Injection\u0027) vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary command execution."
            }
          ],
          "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper neutralization of special elements used in an OS command (\u0027OS command Injection\u0027) vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary command execution."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-78",
              "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T14:18:11.239Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000481268/dsa-2026-278-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-49813",
    "datePublished": "2026-07-03T14:18:11.239Z",
    "dateReserved": "2026-06-01T17:04:30.334Z",
    "dateUpdated": "2026-07-03T14:18:11.239Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-49814 (GCVE-0-2026-49814)

Vulnerability from cvelistv5 – Published: 2026-07-03 14:13 – Updated: 2026-07-03 14:13
VLAI?
Summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command execution.
CWE
  • CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Assigner
References
Impacted products
Vendor Product Version
Dell PowerProtect Data Domain Affected: 0 , < 8.8.0.0 or later (semver)
Affected: 0 , < 8.6.1.20 or later (semver)
Affected: 0 , < 8.3.1.40 or later (semver)
Affected: 0 , < 7.13.1.80 or later (semver)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerProtect Data Domain",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "8.8.0.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.6.1.20 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.3.1.40 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "7.13.1.80 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-07-02T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command execution."
            }
          ],
          "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command execution."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-78",
              "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T14:13:36.579Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000481268/dsa-2026-278-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-49814",
    "datePublished": "2026-07-03T14:13:36.579Z",
    "dateReserved": "2026-06-01T17:04:30.334Z",
    "dateUpdated": "2026-07-03T14:13:36.579Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-49815 (GCVE-0-2026-49815)

Vulnerability from cvelistv5 – Published: 2026-07-03 14:09 – Updated: 2026-07-03 14:09
VLAI?
Summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper neutralization of special Elements used in an OS command ('OS command Injection') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to execution of arbitrary OS commands.
CWE
  • CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Assigner
References
Impacted products
Vendor Product Version
Dell PowerProtect Data Domain Affected: 0 , < 8.8.0.0 or later (semver)
Affected: 0 , < 8.6.1.20 or later (semver)
Affected: 0 , < 8.3.1.40 or later (semver)
Affected: 0 , < 7.13.1.80 or later (semver)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerProtect Data Domain",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "8.8.0.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.6.1.20 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.3.1.40 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "7.13.1.80 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-07-02T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper neutralization of special Elements used in an OS command (\u0027OS command Injection\u0027) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to execution of arbitrary OS commands."
            }
          ],
          "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper neutralization of special Elements used in an OS command (\u0027OS command Injection\u0027) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to execution of arbitrary OS commands."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-78",
              "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T14:09:19.831Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000481268/dsa-2026-278-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-49815",
    "datePublished": "2026-07-03T14:09:19.831Z",
    "dateReserved": "2026-06-01T17:04:30.334Z",
    "dateUpdated": "2026-07-03T14:09:19.831Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-53478 (GCVE-0-2026-53478)

Vulnerability from cvelistv5 – Published: 2026-07-03 14:03 – Updated: 2026-07-03 14:03
VLAI?
Summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper neutralization of special elements used in an OS command ('OS command Injection') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to command execution.
CWE
  • CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Assigner
References
Impacted products
Vendor Product Version
Dell PowerProtect Data Domain Affected: 0 , ≤ 8.8.0.0 or later (semver)
Affected: 0 , ≤ 8.6.1.20 or later (semver)
Affected: 0 , ≤ 8.3.1.40 or later (semver)
Affected: 0 , ≤ 7.13.1.80 or later (semver)
Create a notification for this product.
Credits
Dell would like to thank songxiaoyue for reporting this issue.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerProtect Data Domain",
          "vendor": "Dell",
          "versions": [
            {
              "lessThanOrEqual": "8.8.0.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.6.1.20 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "8.3.1.40 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.13.1.80 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "other",
          "value": "Dell would like to thank songxiaoyue for reporting this issue."
        }
      ],
      "datePublic": "2026-07-02T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper neutralization of special elements used in an OS command (\u0027OS command Injection\u0027) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to command execution."
            }
          ],
          "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper neutralization of special elements used in an OS command (\u0027OS command Injection\u0027) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to command execution."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-78",
              "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T14:03:29.533Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000481268/dsa-2026-278-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-53478",
    "datePublished": "2026-07-03T14:03:29.533Z",
    "dateReserved": "2026-06-09T17:04:35.249Z",
    "dateUpdated": "2026-07-03T14:03:29.533Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-46463 (GCVE-0-2026-46463)

Vulnerability from cvelistv5 – Published: 2026-07-03 13:42 – Updated: 2026-07-03 13:42
VLAI?
Summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an integer overflow or wraparound vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to denial of service.
CWE
  • CWE-190 - Integer Overflow or Wraparound
Assigner
References
Impacted products
Vendor Product Version
Dell PowerProtect Data Domain Affected: 0 , < 8.8.0.0 or later (semver)
Affected: 0 , < 8.6.1.20 or later (semver)
Affected: 0 , < 8.3.1.40 or later (semver)
Affected: 0 , < 7.13.1.80 or later (semver)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerProtect Data Domain",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "8.8.0.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.6.1.20 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.3.1.40 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "7.13.1.80 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-07-02T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an integer overflow or wraparound vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to denial of service."
            }
          ],
          "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an integer overflow or wraparound vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to denial of service."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-190",
              "description": "CWE-190: Integer Overflow or Wraparound",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T13:42:07.171Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000481268/dsa-2026-278-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-46463",
    "datePublished": "2026-07-03T13:42:07.171Z",
    "dateReserved": "2026-05-14T17:05:39.858Z",
    "dateUpdated": "2026-07-03T13:42:07.171Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-46464 (GCVE-0-2026-46464)

Vulnerability from cvelistv5 – Published: 2026-07-03 13:32 – Updated: 2026-07-03 13:32
VLAI?
Summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper link resolution before file access ('Link following') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to information disclosure.
CWE
  • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
Assigner
References
Impacted products
Vendor Product Version
Dell PowerProtect Data Domain Affected: 0 , < 8.8.0.0 or later (semver)
Affected: 0 , < 8.6.1.20 or later (semver)
Affected: 0 , < 8.3.1.40 or later (semver)
Affected: 0 , < 7.13.1.80 or later (semver)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerProtect Data Domain",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "8.8.0.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.6.1.20 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.3.1.40 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "7.13.1.80 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-07-02T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper link resolution before file access (\u0027Link following\u0027) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to information disclosure."
            }
          ],
          "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper link resolution before file access (\u0027Link following\u0027) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to information disclosure."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-59",
              "description": "CWE-59: Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T13:32:35.091Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000481268/dsa-2026-278-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-46464",
    "datePublished": "2026-07-03T13:32:35.091Z",
    "dateReserved": "2026-05-14T17:05:39.859Z",
    "dateUpdated": "2026-07-03T13:32:35.091Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-46465 (GCVE-0-2026-46465)

Vulnerability from cvelistv5 – Published: 2026-07-03 13:16 – Updated: 2026-07-03 13:16
VLAI?
Summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an use of externally-controlled format string vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure and denial of service.
CWE
  • CWE-134 - Use of Externally-Controlled Format String
Assigner
References
Impacted products
Vendor Product Version
Dell PowerProtect Data Domain Affected: 0 , < 8.8.0.0 or later (semver)
Affected: 0 , < 8.6.1.20 or later (semver)
Affected: 0 , < 8.3.1.40 or later (semver)
Affected: 0 , < 7.13.1.80 or later (semver)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerProtect Data Domain",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "8.8.0.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.6.1.20 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.3.1.40 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "7.13.1.80 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-07-02T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an use of externally-controlled format string vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure and denial of service."
            }
          ],
          "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an use of externally-controlled format string vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure and denial of service."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-134",
              "description": "CWE-134: Use of Externally-Controlled Format String",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T13:16:00.714Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000481268/dsa-2026-278-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-46465",
    "datePublished": "2026-07-03T13:16:00.714Z",
    "dateReserved": "2026-05-14T17:05:39.859Z",
    "dateUpdated": "2026-07-03T13:16:00.714Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-46466 (GCVE-0-2026-46466)

Vulnerability from cvelistv5 – Published: 2026-07-03 13:10 – Updated: 2026-07-03 13:10
VLAI?
Summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an use of less trusted source vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to information tampering.
CWE
  • CWE-348 - Use of Less Trusted Source
Assigner
References
Impacted products
Vendor Product Version
Dell PowerProtect Data Domain Affected: 0 , < 8.8.0.0 or later (semver)
Affected: 0 , < 8.6.1.20 or later (semver)
Affected: 0 , < 8.3.1.40 or later (semver)
Affected: 0 , < 7.13.1.80 or later (semver)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerProtect Data Domain",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "8.8.0.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.6.1.20 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.3.1.40 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "7.13.1.80 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-07-02T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an use of less trusted source vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to information tampering."
            }
          ],
          "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an use of less trusted source vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to information tampering."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 2.7,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-348",
              "description": "CWE-348: Use of Less Trusted Source",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T13:10:01.883Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000481268/dsa-2026-278-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-46466",
    "datePublished": "2026-07-03T13:10:01.883Z",
    "dateReserved": "2026-05-14T17:05:39.859Z",
    "dateUpdated": "2026-07-03T13:10:01.883Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-46467 (GCVE-0-2026-46467)

Vulnerability from cvelistv5 – Published: 2026-07-03 13:04 – Updated: 2026-07-03 13:04
VLAI?
Summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an insertion of sensitive information into log file vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to information exposure.
CWE
  • CWE-532 - Insertion of Sensitive Information into Log File
Assigner
References
Impacted products
Vendor Product Version
Dell PowerProtect Data Domain Affected: 0 , < 8.8.0.0 or later (semver)
Affected: 0 , < 8.6.1.20 or later (semver)
Affected: 0 , < 8.3.1.40 or later (semver)
Affected: 0 , < 7.13.1.80 or later (semver)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerProtect Data Domain",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "8.8.0.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.6.1.20 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.3.1.40 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "7.13.1.80 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-07-02T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an insertion of sensitive information into log file vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to information exposure."
            }
          ],
          "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an insertion of sensitive information into log file vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to information exposure."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "LOW",
            "baseScore": 5.8,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:L",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-532",
              "description": "CWE-532: Insertion of Sensitive Information into Log File",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T13:04:26.935Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000481268/dsa-2026-278-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-46467",
    "datePublished": "2026-07-03T13:04:26.935Z",
    "dateReserved": "2026-05-14T17:05:39.859Z",
    "dateUpdated": "2026-07-03T13:04:26.935Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-46468 (GCVE-0-2026-46468)

Vulnerability from cvelistv5 – Published: 2026-07-03 12:58 – Updated: 2026-07-03 12:58
VLAI?
Summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper link resolution before file access ('Link following') vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to information exposure.
CWE
  • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
Assigner
References
Impacted products
Vendor Product Version
Dell PowerProtect Data Domain Affected: 0 , < 8.8.0.0 or later (semver)
Affected: 0 , < 8.6.1.20 or later (semver)
Affected: 0 , < 8.3.1.40 or later (semver)
Affected: 0 , < 7.13.1.80 or later (semver)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerProtect Data Domain",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "8.8.0.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.6.1.20 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.3.1.40 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "7.13.1.80 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-07-02T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper link resolution before file access (\u0027Link following\u0027) vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to information exposure."
            }
          ],
          "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper link resolution before file access (\u0027Link following\u0027) vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to information exposure."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-59",
              "description": "CWE-59: Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T12:58:46.278Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000481268/dsa-2026-278-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-46468",
    "datePublished": "2026-07-03T12:58:46.278Z",
    "dateReserved": "2026-05-14T17:05:39.859Z",
    "dateUpdated": "2026-07-03T12:58:46.278Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-46730 (GCVE-0-2026-46730)

Vulnerability from cvelistv5 – Published: 2026-07-03 12:54 – Updated: 2026-07-03 12:54
VLAI?
Summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an incorrect authorization vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to unauthorized command execution.
CWE
  • CWE-863 - Incorrect Authorization
Assigner
References
Impacted products
Vendor Product Version
Dell PowerProtect Data Domain Affected: 0 , < 8.8.0.0 or later (semver)
Affected: 0 , < 8.6.1.20 or later (semver)
Affected: 0 , < 8.3.1.40 or later (semver)
Affected: 0 , < 7.13.1.80 or later (semver)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerProtect Data Domain",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "8.8.0.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.6.1.20 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.3.1.40 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "7.13.1.80 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-07-02T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an incorrect authorization vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to unauthorized command execution."
            }
          ],
          "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an incorrect authorization vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to unauthorized command execution."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "LOW",
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-863",
              "description": "CWE-863: Incorrect Authorization",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T12:54:00.862Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000481268/dsa-2026-278-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-46730",
    "datePublished": "2026-07-03T12:54:00.862Z",
    "dateReserved": "2026-05-17T17:04:27.065Z",
    "dateUpdated": "2026-07-03T12:54:00.862Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-56085 (GCVE-0-2026-56085)

Vulnerability from cvelistv5 – Published: 2026-07-03 12:46 – Updated: 2026-07-03 12:46
VLAI?
Summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an use of uninitialized resource vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to information exposure.
CWE
  • CWE-908 - Use of Uninitialized Resource
Assigner
References
Impacted products
Vendor Product Version
Dell PowerProtect Data Domain Affected: 0 , < 8.8.0.0 or later (semver)
Affected: 0 , < 8.6.1.20 or later (semver)
Affected: 0 , < 8.3.1.40 or later (semver)
Affected: 0 , < 7.13.1.80 or later (semver)
Create a notification for this product.
Credits
Dell would like to thank kam1tsur3 for reporting this issue.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerProtect Data Domain",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "8.8.0.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.6.1.20 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.3.1.40 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "7.13.1.80 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "other",
          "value": "Dell would like to thank kam1tsur3 for reporting this issue."
        }
      ],
      "datePublic": "2026-07-02T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an use of uninitialized resource vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to information exposure."
            }
          ],
          "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an use of uninitialized resource vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to information exposure."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-908",
              "description": "CWE-908: Use of Uninitialized Resource",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T12:46:42.895Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000481268/dsa-2026-278-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-56085",
    "datePublished": "2026-07-03T12:46:42.895Z",
    "dateReserved": "2026-06-18T17:04:56.015Z",
    "dateUpdated": "2026-07-03T12:46:42.895Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-26355 (GCVE-0-2026-26355)

Vulnerability from cvelistv5 – Published: 2026-07-03 12:41 – Updated: 2026-07-03 12:41
VLAI?
Summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper neutralization of special Elements used in an OS command ('OS command Injection') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to command execution.
CWE
  • CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Assigner
References
Impacted products
Vendor Product Version
Dell PowerProtect Data Domain Affected: 0 , < 8.8.0.0 or later (semver)
Affected: 0 , < 8.6.1.20 or later (semver)
Affected: 0 , < 8.3.1.40 or later (semver)
Affected: 0 , < 7.13.1.80 or later (semver)
Create a notification for this product.
Credits
Dell would like to thank liupeng from Ubisectech Sirius Team for reporting this issue.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerProtect Data Domain",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "8.8.0.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.6.1.20 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.3.1.40 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "7.13.1.80 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "other",
          "value": "Dell would like to thank liupeng from Ubisectech Sirius Team for reporting this issue."
        }
      ],
      "datePublic": "2026-07-02T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper neutralization of special Elements used in an OS command (\u0027OS command Injection\u0027) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to command execution."
            }
          ],
          "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper neutralization of special Elements used in an OS command (\u0027OS command Injection\u0027) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to command execution."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-78",
              "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T12:41:34.555Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000481268/dsa-2026-278-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-26355",
    "datePublished": "2026-07-03T12:41:34.555Z",
    "dateReserved": "2026-02-13T18:05:27.825Z",
    "dateUpdated": "2026-07-03T12:41:34.555Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-54483 (GCVE-0-2026-54483)

Vulnerability from cvelistv5 – Published: 2026-07-03 12:34 – Updated: 2026-07-03 12:34
VLAI?
Summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper neutralization of special elements used in an OS command ('OS command Injection') vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution.
CWE
  • CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Assigner
References
Impacted products
Vendor Product Version
Dell PowerProtect Data Domain Affected: 0 , < 8.7.0.0 or later (semver)
Affected: 0 , < 8.6.1.20 or later (semver)
Affected: 0 , < 8.3.1.40 or later (semver)
Affected: 0 , < 7.13.1.80 or later (semver)
Create a notification for this product.
Credits
Dell would like to thank zzcentury for reporting this issue.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerProtect Data Domain",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "8.7.0.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.6.1.20 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.3.1.40 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "7.13.1.80 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "other",
          "value": "Dell would like to thank zzcentury for reporting this issue."
        }
      ],
      "datePublic": "2026-07-02T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper neutralization of special elements used in an OS command (\u0027OS command Injection\u0027) vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution."
            }
          ],
          "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper neutralization of special elements used in an OS command (\u0027OS command Injection\u0027) vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-78",
              "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T12:34:43.239Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000481268/dsa-2026-278-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-54483",
    "datePublished": "2026-07-03T12:34:43.239Z",
    "dateReserved": "2026-06-15T17:49:28.560Z",
    "dateUpdated": "2026-07-03T12:34:43.239Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-41123 (GCVE-0-2026-41123)

Vulnerability from cvelistv5 – Published: 2026-07-03 12:25 – Updated: 2026-07-03 12:25
VLAI?
Summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper access control vulnerability in the RBAC. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to information tampering.
CWE
  • CWE-284 - Improper Access Control
Assigner
References
Impacted products
Vendor Product Version
Dell PowerProtect Data Domain Affected: 0 , < 8.7.0.0 or later (semver)
Affected: 0 , < 8.6.1.20 or later (semver)
Affected: 0 , < 8.3.1.40 or later (semver)
Affected: 0 , < 7.13.1.80 or later (semver)
Create a notification for this product.
Credits
Dell would like to thank brocked200 (Nguyen Quoc Khanh) for reporting this issue.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerProtect Data Domain",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "8.7.0.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.6.1.20 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.3.1.40 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "7.13.1.80 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "other",
          "value": "Dell would like to thank brocked200 (Nguyen Quoc Khanh) for reporting this issue."
        }
      ],
      "datePublic": "2026-07-02T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper access control vulnerability in the RBAC. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to information tampering."
            }
          ],
          "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper access control vulnerability in the RBAC. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to information tampering."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-284",
              "description": "CWE-284: Improper Access Control",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T12:25:47.932Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000481268/dsa-2026-278-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-41123",
    "datePublished": "2026-07-03T12:25:47.932Z",
    "dateReserved": "2026-04-17T05:04:42.886Z",
    "dateUpdated": "2026-07-03T12:25:47.932Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-41124 (GCVE-0-2026-41124)

Vulnerability from cvelistv5 – Published: 2026-07-03 12:19 – Updated: 2026-07-03 12:19
VLAI?
Summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an Improper limitation of a pathname to a restricted directory ('path traversal') vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure.
CWE
  • CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Assigner
References
Impacted products
Vendor Product Version
Dell PowerProtect Data Domain Affected: 0 , < 8.8.0.0 or later (semver)
Affected: 0 , < 8.6.1.20 or later (semver)
Affected: 0 , < 8.3.1.40 or later (semver)
Affected: 0 , < 7.13.1.80 or later (semver)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerProtect Data Domain",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "8.8.0.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.6.1.20 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.3.1.40 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "7.13.1.80 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-07-02T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an Improper limitation of a pathname to a restricted directory (\u0027path traversal\u0027) vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure."
            }
          ],
          "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an Improper limitation of a pathname to a restricted directory (\u0027path traversal\u0027) vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 2.3,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-22",
              "description": "CWE-22: Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T12:19:59.524Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000481268/dsa-2026-278-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-41124",
    "datePublished": "2026-07-03T12:19:59.524Z",
    "dateReserved": "2026-04-17T05:04:42.886Z",
    "dateUpdated": "2026-07-03T12:19:59.524Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-44268 (GCVE-0-2026-44268)

Vulnerability from cvelistv5 – Published: 2026-07-03 12:15 – Updated: 2026-07-03 12:15
VLAI?
Summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an incorrect permission Assignment for critical resource vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to unauthorized access.
CWE
  • CWE-732 - Incorrect Permission Assignment for Critical Resource
Assigner
References
Impacted products
Vendor Product Version
Dell PowerProtect Data Domain Affected: 0 , < 8.7.0.0 or later (semver)
Affected: 0 , < 8.6.1.20 or later (semver)
Affected: 0 , < 8.3.1.40 or later (semver)
Affected: 0 , < 7.13.1.80 or later (semver)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerProtect Data Domain",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "8.7.0.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.6.1.20 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.3.1.40 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "7.13.1.80 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-07-02T12:12:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an incorrect permission Assignment for critical resource vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to unauthorized access."
            }
          ],
          "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an incorrect permission Assignment for critical resource vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to unauthorized access."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-732",
              "description": "CWE-732: Incorrect Permission Assignment for Critical Resource",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T12:15:22.397Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000481268/dsa-2026-278-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-44268",
    "datePublished": "2026-07-03T12:15:22.397Z",
    "dateReserved": "2026-05-05T17:04:45.713Z",
    "dateUpdated": "2026-07-03T12:15:22.397Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-44269 (GCVE-0-2026-44269)

Vulnerability from cvelistv5 – Published: 2026-07-03 12:09 – Updated: 2026-07-03 12:09
VLAI?
Summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper link resolution before file access ('link following') vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to unauthorized access.
CWE
  • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
Assigner
References
Impacted products
Vendor Product Version
Dell PowerProtect Data Domain Affected: 0 , < 8.7.0.0 or later (semver)
Affected: 0 , < 8.6.1.20 or later (semver)
Affected: 0 , < 8.3.1.40 or later (semver)
Affected: 0 , < 7.13.1.80 or later (semver)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "PowerProtect Data Domain",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "8.7.0.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.6.1.20 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "8.3.1.40 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "7.13.1.80 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-07-02T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper link resolution before file access (\u0027link following\u0027) vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to unauthorized access."
            }
          ],
          "value": "Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper link resolution before file access (\u0027link following\u0027) vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to unauthorized access."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-59",
              "description": "CWE-59: Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T12:09:06.006Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000481268/dsa-2026-278-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-44269",
    "datePublished": "2026-07-03T12:09:06.006Z",
    "dateReserved": "2026-05-05T17:04:45.713Z",
    "dateUpdated": "2026-07-03T12:09:06.006Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-35159 (GCVE-0-2026-35159)

Vulnerability from cvelistv5 – Published: 2026-07-03 08:08 – Updated: 2026-07-03 08:54
VLAI?
Summary
Dell Client Platform BIOS contains an Authentication Bypass by Primary Weakness vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability, leading to Information Disclosure.
CWE
  • CWE-305 - Authentication Bypass by Primary Weakness
Assigner
References
Impacted products
Vendor Product Version
Dell Inspiron 15 3520 Affected: 0 , < 1.41.0 or later (semver)
Create a notification for this product.
    Dell G15 5530 Affected: 0 , < 1.33.0 or later (semver)
Create a notification for this product.
    Dell Alienware 16 Area-51 AA16250 Affected: 0 , < 2.4.1 or later (semver)
Create a notification for this product.
    Dell Alienware 16 Aurora AC16250 Affected: 0 , < 1.13.0 or later (semver)
Create a notification for this product.
    Dell Alienware 16X Aurora AC16251 Affected: 0 , < 2.4.0 or later (semver)
Create a notification for this product.
    Dell Alienware 18 Area-51 AA18250 Affected: 0 , < 2.4.1 or later (semver)
Create a notification for this product.
    Dell Alienware Area-51 AAT2250 Affected: 0 , < 1.17.2 or later (semver)
Create a notification for this product.
    Dell Alienware Aurora ACT1250 Affected: 0 , < 1.16.2 or later (semver)
Create a notification for this product.
    Dell Alienware m15 R6 Affected: 0 , < 1.44.0 or later (semver)
Create a notification for this product.
    Dell Alienware m15 R7 Affected: 0 , < 1.40.0 or later (semver)
Create a notification for this product.
    Dell Alienware m16 R1 Affected: 0 , < 1.34.0 or later (semver)
Create a notification for this product.
    Dell Alienware m16 R2 Affected: 0 , < 1.21.0 or later (semver)
Create a notification for this product.
    Dell Alienware m18 R1 Affected: 0 , < 1.34.0 or later (semver)
Create a notification for this product.
    Dell Alienware M18 R2 Affected: 0 , < 1.22.0 or later (semver)
Create a notification for this product.
    Dell Alienware x14 R2 Affected: 0 , < 1.32.0 or later (semver)
Create a notification for this product.
    Dell Alienware x16 R1 Affected: 0 , < 1.32.0 or later (semver)
Create a notification for this product.
    Dell Alienware X16 R2 Affected: 0 , < 1.22.0 or later (semver)
Create a notification for this product.
    Dell ChengMing 3900 Affected: 0 , < 1.40.0 or later (semver)
Create a notification for this product.
    Dell ChengMing 3910/3911 Affected: 0 , < 1.36.0 or later (semver)
Create a notification for this product.
    Dell Dell 14 DC14250 Affected: 0 , < 1.7.0 or later (semver)
Create a notification for this product.
    Dell 14 Plus 2-in-1 DB04250 Affected: 0 , < 1.13.0 or later (semver)
Create a notification for this product.
    Dell 14 Plus DB14250 Affected: 0 , < 1.13.0 or later (semver)
Create a notification for this product.
    Dell 15 DC15250 Affected: 0 , < 1.10.0 or later (semver)
Create a notification for this product.
    Dell 16 Plus 2-in-1 DB06250 Affected: 0 , < 1.13.0 or later (semver)
Create a notification for this product.
    Dell 16 Plus DB16250 Affected: 0 , < 1.13.0 or later (semver)
Create a notification for this product.
    Dell 24 All-in-One EC24250 Affected: 0 , < 1.15.0 or later (semver)
Create a notification for this product.
    Dell 27 All-in-One EC27250 Affected: 0 , < 1.15.0 or later (semver)
Create a notification for this product.
    Dell G15 5510 Affected: 0 , < 1.40.0 or later (semver)
Create a notification for this product.
    Dell G15 5511 Affected: 0 , < 1.43.0 or later (semver)
Create a notification for this product.
    Dell G15 5520 Affected: 0 , < 1.41.0 or later (semver)
Create a notification for this product.
    Dell G16 7620 Affected: 0 , < 1.41.0 or later (semver)
Create a notification for this product.
    Dell G16 7630 Affected: 0 , < 1.33.0 or later (semver)
Create a notification for this product.
    Dell Pro 13 Plus PB13250 Affected: 0 , < 2.13.4 or later (semver)
Create a notification for this product.
    Dell Pro 13 Plus PB13255 Affected: 0 , < 1.15.0 or later (semver)
Create a notification for this product.
    Dell Pro 13 Premium PA13250 Affected: 0 , < 2.13.4 or later (semver)
Create a notification for this product.
    Dell Pro 14 Essential PV14250 Affected: 0 , < 1.6.0 or later (semver)
Create a notification for this product.
    Dell Pro 14 PC14250 Affected: 0 , < 1.15.2 or later (semver)
Create a notification for this product.
    Dell Pro 14 Plus PB14250 Affected: 0 , < 2.13.4 or later (semver)
Create a notification for this product.
    Dell Pro 14 Plus PB14255 Affected: 0 , < 1.15.0 or later (semver)
Create a notification for this product.
    Dell Pro 14 Premium PA14250 Affected: 0 , < 2.13.4 or later (semver)
Create a notification for this product.
    Dell Pro 16 PC16250 Affected: 0 , < 1.15.2 or later (semver)
Create a notification for this product.
    Dell Pro 16 Plus PB16250 Affected: 0 , < 2.13.4 or later (semver)
Create a notification for this product.
    Dell Pro 16 Plus PB16255 Affected: 0 , < 1.15.0 or later (semver)
Create a notification for this product.
    Dell Pro 24 All-In-One Plus QB24250 / Pro 24 All-In-One QC24250 / Pro 24 All-In-One QC24251 Affected: 0 , < 1.15.1 or later (semver)
Create a notification for this product.
    Dell Pro Laptop PC14250 Affected: 0 , < 1.15.2 or later (semver)
Create a notification for this product.
    Dell Pro Laptop PC16250 Affected: 0 , < 1.15.2 or later (semver)
Create a notification for this product.
    Dell Pro Max 14 MC14250 Affected: 0 , < 1.14.1 or later (semver)
Create a notification for this product.
    Dell Pro Max 14 MC14255 Affected: 0 , < 2.4.0 or later (semver)
Create a notification for this product.
    Dell Pro Max 16 MC16250 Affected: 0 , < 1.14.1 or later (semver)
Create a notification for this product.
    Dell Pro Max 16 MC16255 Affected: 0 , < 2.4.0 or later (semver)
Create a notification for this product.
    Dell Pro Max Micro FCM2250 Affected: 0 , < 1.15.2 or later (semver)
Create a notification for this product.
    Dell Pro Max Slim FCS1250 Affected: 0 , < 1.15.2 or later (semver)
Create a notification for this product.
    Dell Pro Max Tower T2 FCT2250 Affected: 0 , < 1.15.2 or later (semver)
Create a notification for this product.
    Dell Pro Micro / QCM1255 Affected: 0 , < 1.13.0 or later (semver)
Create a notification for this product.
    Dell Pro Micro Plus QBM1250 / Pro Micro QCM1250 Affected: 0 , < 1.15.1 or later (semver)
Create a notification for this product.
    Dell Pro Micro/Micro Plus QCM1250/QBM1250 Affected: 0 , < 1.15.1 or later (semver)
Create a notification for this product.
    Dell Pro Precision 7 T1 Affected: 0 , < 1.15.1 or later (semver)
Create a notification for this product.
    Dell Pro Rugged 10 Tablets Affected: 0 , < 1.9.0 or later (semver)
Create a notification for this product.
    Dell Pro Rugged 12 Tablet Affected: 0 , < 1.9.0 or later (semver)
Create a notification for this product.
    Dell Pro Rugged 13 RA13250 Affected: 0 , < 1.16.1 or later (semver)
Create a notification for this product.
    Dell Pro Rugged 14 RB14250 Affected: 0 , < 1.16.1 or later (semver)
Create a notification for this product.
    Dell Pro Slim / QCS1255 Affected: 0 , < 1.13.0 or later (semver)
Create a notification for this product.
    Dell Pro Slim Essential QVS1260 Affected: 0 , < 1.15.0 or later (semver)
Create a notification for this product.
    Dell Pro Slim Plus QBS1250 / Pro Slim QCS1250 Affected: 0 , < 1.15.1 or later (semver)
Create a notification for this product.
    Dell Pro Slim Plus QBS1250/Pro Slim QCS1250 Affected: 0 , < 1.15.1 or later (semver)
Create a notification for this product.
    Dell Pro Tower / QCT1255 Affected: 0 , < 1.13.0 or later (semver)
Create a notification for this product.
    Dell Pro Tower Essential QVT1260 Affected: 0 , < 1.15.0 or later (semver)
Create a notification for this product.
    Dell Pro Tower Plus QBT1250 / Pro Tower QCT1250 Affected: 0 , < 1.15.1 or later (semver)
Create a notification for this product.
    Dell Pro Tower Plus QBT1250/Pro Tower QCT1250 Affected: 0 , < 1.15.1 or later (semver)
Create a notification for this product.
    Dell Slim ECS1250 Affected: 0 , < 1.15.0 or later (semver)
Create a notification for this product.
    Dell Tower ECT1250 Affected: 0 , < 1.15.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 13 5330 Affected: 0 , < 1.31.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 14 5420 Affected: 0 , < 1.36.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 14 5430 Affected: 0 , < 1.29.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 14 5440 Affected: 0 , < 1.22.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 14 7430 2-in-1 Affected: 0 , < 1.29.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 14 7440 2-in-1 Affected: 0 , < 1.22.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 14 Plus 7420 Affected: 0 , < 1.37.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 14 Plus 7430 Affected: 0 , < 1.29.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 14 Plus 7440 Affected: 0 , < 1.25.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 15 3511 Affected: 0 , < 1.46.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 15 3530 Affected: 0 , < 1.32.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 16 5620 Affected: 0 , < 1.36.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 16 5630 Affected: 0 , < 1.29.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 16 5640 Affected: 0 , < 1.21.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 16 7630 2-in-1 Affected: 0 , < 1.29.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 16 7640 2-in-1 Affected: 0 , < 1.21.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 16 Plus 7620 Affected: 0 , < 1.37.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 16 Plus 7630 Affected: 0 , < 1.29.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 16 Plus 7640 Affected: 0 , < 1.25.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 24 5420 All-in-One Affected: 0 , < 1.29.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 24 5430 All-in-One Affected: 0 , < 1.22.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 27 7720 All-in-One Affected: 0 , < 1.29.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 27 7730 All-in-One Affected: 0 , < 1.22.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 3020 Desktop Affected: 0 , < 1.36.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 3020 S Affected: 0 , < 1.36.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 3030 Affected: 0 , < 1.26.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 3030S Affected: 0 , < 1.26.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 5410 All-in-One Affected: 0 , < 1.38.0 or later (semver)
Create a notification for this product.
    Dell Inspiron 7710 All-in-One Affected: 0 , < 1.38.0 or later (semver)
Create a notification for this product.
    Dell Latitude 3320 Affected: 0 , < 1.44.0 or later (semver)
Create a notification for this product.
    Dell Latitude 3340 Affected: 0 , < 1.31.0 or later (semver)
Create a notification for this product.
    Dell Latitude 5320 Affected: 0 , < 1.51.0 or later (semver)
Create a notification for this product.
    Dell Latitude 5330 Affected: 0 , < 1.36.0 or later (semver)
Create a notification for this product.
    Dell Latitude 5340 Affected: 0 , < 1.29.0 or later (semver)
Create a notification for this product.
    Dell Latitude 5350 Affected: 0 , < 1.23.0 or later (semver)
Create a notification for this product.
    Dell Latitude 5421 Affected: 0 , < 1.46.0 or later (semver)
Create a notification for this product.
    Dell Latitude 5430 Affected: 0 , < 1.39.1 or later (semver)
Create a notification for this product.
    Dell Latitude 5430 Rugged Laptop Affected: 0 , < 1.43.0 or later (semver)
Create a notification for this product.
    Dell Latitude 5431 Affected: 0 , < 1.39.0 or later (semver)
Create a notification for this product.
    Dell Latitude 5440 Affected: 0 , < 1.31.1 or later (semver)
Create a notification for this product.
    Dell Latitude 5450 Affected: 0 , < 1.23.1 or later (semver)
Create a notification for this product.
    Dell Latitude 5520 Affected: 0 , < 1.51.0 or later (semver)
Create a notification for this product.
    Dell Latitude 5521 Affected: 0 , < 1.43.0 or later (semver)
Create a notification for this product.
    Dell Latitude 5530 Affected: 0 , < 1.36.0 or later (semver)
Create a notification for this product.
    Dell Latitude 5531 Affected: 0 , < 1.36.0 or later (semver)
Create a notification for this product.
    Dell Latitude 5540 Affected: 0 , < 1.29.0 or later (semver)
Create a notification for this product.
    Dell Latitude 5550 Affected: 0 , < 1.23.0 or later (semver)
Create a notification for this product.
    Dell Latitude 7030 Rugged Extreme Affected: 0 , < 1.23.0 or later (semver)
Create a notification for this product.
    Dell Latitude 7230 Rugged Extreme Affected: 0 , < 1.32.0 or later (semver)
Create a notification for this product.
    Dell Latitude 7320 Affected: 0 , < 1.50.1 or later (semver)
Create a notification for this product.
    Dell Latitude 7320 Detachable Affected: 0 , < 1.47.0 or later (semver)
Create a notification for this product.
    Dell Latitude 7330 Affected: 0 , < 1.40.0 or later (semver)
Create a notification for this product.
    Dell Latitude 7330 Rugged Laptop Affected: 0 , < 1.43.0 or later (semver)
Create a notification for this product.
    Dell Latitude 7340 Affected: 0 , < 1.30.0 or later (semver)
Create a notification for this product.
    Dell Latitude 7350 Affected: 0 , < 1.23.0 or later (semver)
Create a notification for this product.
    Dell Latitude 7420 Affected: 0 , < 1.50.1 or later (semver)
Create a notification for this product.
    Dell Latitude 7430 Affected: 0 , < 1.40.0 or later (semver)
Create a notification for this product.
    Dell Latitude 7440 Affected: 0 , < 1.31.1 or later (semver)
Create a notification for this product.
    Dell Latitude 7450 Affected: 0 , < 1.23.1 or later (semver)
Create a notification for this product.
    Dell Latitude 7520 Affected: 0 , < 1.50.1 or later (semver)
Create a notification for this product.
    Dell Latitude 7530 Affected: 0 , < 1.40.0 or later (semver)
Create a notification for this product.
    Dell Latitude 7640 Affected: 0 , < 1.31.1 or later (semver)
Create a notification for this product.
    Dell Latitude 7650 Affected: 0 , < 1.23.1 or later (semver)
Create a notification for this product.
    Dell Latitude 9330 Affected: 0 , < 1.37.0 or later (semver)
Create a notification for this product.
    Dell Latitude 9420 Affected: 0 , < 1.47.0 or later (semver)
Create a notification for this product.
    Dell Latitude 9430 Affected: 0 , < 1.40.1 or later (semver)
Create a notification for this product.
    Dell Latitude 9440 2-in-1 Affected: 0 , < 1.29.0 or later (semver)
Create a notification for this product.
    Dell Latitude 9450 Affected: 0 , < 1.21.1 or later (semver)
Create a notification for this product.
    Dell Latitude 9520 Affected: 0 , < 1.47.1 or later (semver)
Create a notification for this product.
    Dell OptiPlex 3000 Micro / OptiPlex 3000 Small Form Factor / OptiPlex 3000 Tower Affected: 0 , < 1.40.0 or later (semver)
Create a notification for this product.
    Dell OptiPlex 3000 Thin Client Affected: 0 , < 1.34.0 or later (semver)
Create a notification for this product.
    Dell OptiPlex 3090 Ultra Affected: 0 , < 1.42.0 or later (semver)
Create a notification for this product.
    Dell OptiPlex 5000 Micro / OptiPlex 5000 Small Form Factor / OptiPlex 5000 Tower Affected: 0 , < 1.40.0 or later (semver)
Create a notification for this product.
    Dell OptiPlex 5090 Micro / OptiPlex 5090 Small Form Factor / OptiPlex 5090 Tower Affected: 0 , < 1.42.0 or later (semver)
Create a notification for this product.
    Dell OptiPlex 5400 All-In-One Affected: 0 , < 1.1.59 or later (semver)
Create a notification for this product.
    Dell OptiPlex 5490 AIO Affected: 0 , < 1.47.0 or later (semver)
Create a notification for this product.
    Dell OptiPlex 7000 Micro / OptiPlex 7000 Small Form Factor / OptiPlex 7000 Tower / OptiPlex 7000 XE Micro Affected: 0 , < 1.40.0 or later (semver)
Create a notification for this product.
    Dell OptiPlex 7000 OEM MT+ Affected: 0 , < 1.40.0 or later (semver)
Create a notification for this product.
    Dell OptiPlex 7090 Tower Affected: 0 , < 1.42.0 or later (semver)
Create a notification for this product.
    Dell OptiPlex 7090 Ultra Affected: 0 , < 1.42.0 or later (semver)
Create a notification for this product.
    Dell OptiPlex 7400 All-In-One Affected: 0 , < 1.1.59 or later (semver)
Create a notification for this product.
    Dell OptiPlex 7490 AIO Affected: 0 , < 1.47.0 or later (semver)
Create a notification for this product.
    Dell OptiPlex AIO 7420 Affected: 0 , < 1.26.1 or later (semver)
Create a notification for this product.
    Dell OptiPlex All-in-One 7410 Affected: 0 , < 1.36.0 or later (semver)
Create a notification for this product.
    Dell OptiPlex Micro 7010 / OptiPlex Micro Plus 7010 Affected: 0 , < 1.36.0 or later (semver)
Create a notification for this product.
    Dell OptiPlex Micro 7020 Affected: 0 , < 1.26.1 or later (semver)
Create a notification for this product.
    Dell OptiPlex SFF 7020 Affected: 0 , < 1.26.1 or later (semver)
Create a notification for this product.
    Dell OptiPlex Small Form Factor 7010 / OptiPlex Small Form Factor Plus 7010 Affected: 0 , < 1.36.0 or later (semver)
Create a notification for this product.
    Dell OptiPlex Tower 7010 / OptiPlex Tower Plus 7010 Affected: 0 , < 1.36.0 or later (semver)
Create a notification for this product.
    Dell OptiPlex Tower 7020 Affected: 0 , < 1.26.1 or later (semver)
Create a notification for this product.
    Dell OptiPlex XE4 SFF Affected: 0 , < 1.40.0 or later (semver)
Create a notification for this product.
    Dell PC14255 Affected: 0 , < 1.14.1 or later (semver)
Create a notification for this product.
    Dell PC16255 Affected: 0 , < 1.14.1 or later (semver)
Create a notification for this product.
    Dell Precision 3260 XE Compact / Precision 3260 Compact Affected: 0 , < 3.26.0 or later (semver)
Create a notification for this product.
    Dell Precision 3280 CFF Affected: 0 , < 1.24.1 or later (semver)
Create a notification for this product.
    Dell Precision 3450 Affected: 0 , < 1.42.0 or later (semver)
Create a notification for this product.
    Dell Precision 3460 XE Small Form Factor / Precision 3460 Small Form Factor Affected: 0 , < 3.26.0 or later (semver)
Create a notification for this product.
    Dell Precision 3470 Affected: 0 , < 1.39.0 or later (semver)
Create a notification for this product.
    Dell Precision 3480 Affected: 0 , < 1.31.1 or later (semver)
Create a notification for this product.
    Dell Precision 3490 Affected: 0 , < 1.23.1 or later (semver)
Create a notification for this product.
    Dell Precision 3560 Affected: 0 , < 1.51.0 or later (semver)
Create a notification for this product.
    Dell Precision 3561 Affected: 0 , < 1.43.0 or later (semver)
Create a notification for this product.
    Dell Precision 3570 Affected: 0 , < 1.36.0 or later (semver)
Create a notification for this product.
    Dell Precision 3571 Affected: 0 , < 1.36.0 or later (semver)
Create a notification for this product.
    Dell Precision 3580 Affected: 0 , < 1.29.0 or later (semver)
Create a notification for this product.
    Dell Precision 3581 Affected: 0 , < 1.29.0 or later (semver)
Create a notification for this product.
    Dell Precision 3590 Affected: 0 , < 1.23.0 or later (semver)
Create a notification for this product.
    Dell Precision 3591 Affected: 0 , < 1.23.0 or later (semver)
Create a notification for this product.
    Dell Precision 3650 MT Affected: 0 , < 1.47.0 or later (semver)
Create a notification for this product.
    Dell Precision 3660 Affected: 0 , < 2.37.1 or later (semver)
Create a notification for this product.
    Dell Precision 3680 Tower Affected: 0 , < 1.26.1 or later (semver)
Create a notification for this product.
    Dell Precision 5470 Affected: 0 , < 1.39.0 or later (semver)
Create a notification for this product.
    Dell Precision 5480 Affected: 0 , < 1.27.0 or later (semver)
Create a notification for this product.
    Dell Precision 5490 Affected: 0 , < 1.21.1 or later (semver)
Create a notification for this product.
    Dell Precision 5560 Affected: 0 , < 1.46.0 or later (semver)
Create a notification for this product.
    Dell Precision 5570 Affected: 0 , < 1.41.0 or later (semver)
Create a notification for this product.
    Dell Precision 5680 Affected: 0 , < 1.29.0 or later (semver)
Create a notification for this product.
    Dell Precision 5690 Affected: 0 , < 1.23.0 or later (semver)
Create a notification for this product.
    Dell Precision 5770 Affected: 0 , < 1.40.0 or later (semver)
Create a notification for this product.
    Dell Precision 5860 Tower Affected: 0 , < 3.8.0 or later (semver)
Create a notification for this product.
    Dell Precision 7560 Affected: 0 , < 1.47.0 or later (semver)
Create a notification for this product.
    Dell Precision 7670 Affected: 0 , < 1.38.0 or later (semver)
Create a notification for this product.
    Dell Precision 7680 Affected: 0 , < 1.29.0 or later (semver)
Create a notification for this product.
    Dell Precision 7760 Affected: 0 , < 1.47.0 or later (semver)
Create a notification for this product.
    Dell Precision 7770 Affected: 0 , < 1.38.0 or later (semver)
Create a notification for this product.
    Dell Precision 7780 Affected: 0 , < 1.29.0 or later (semver)
Create a notification for this product.
    Dell Precision 7875 Tower Affected: 0 , < 02.10.01 or later (semver)
Create a notification for this product.
    Dell Precision 7960 Tower Affected: 0 , < 2.20.0 or later (semver)
Create a notification for this product.
    Dell Precision Tower 7865 Affected: 0 , < 1.26.0 or later (semver)
Create a notification for this product.
    Dell Vostro 14 3420 Affected: 0 , < 1.41.0 or later (semver)
Create a notification for this product.
    Dell Vostro 14 3430 Affected: 0 , < 1.32.0 or later (semver)
Create a notification for this product.
    Dell Vostro 14 3440 Affected: 0 , < 1.22.0 or later (semver)
Create a notification for this product.
    Dell Vostro 15 3510 Affected: 0 , < 1.46.0 or later (semver)
Create a notification for this product.
    Dell Vostro 15 3520 Affected: 0 , < 1.41.0 or later (semver)
Create a notification for this product.
    Dell Vostro 15 3530 Affected: 0 , < 1.32.0 or later (semver)
Create a notification for this product.
    Dell Vostro 16 5630 Affected: 0 , < 1.29.0 or later (semver)
Create a notification for this product.
    Dell Vostro 16 5640 Affected: 0 , < 1.21.0 or later (semver)
Create a notification for this product.
    Dell Vostro 3020 Small Desktop Affected: 0 , < 1.36.0 or later (semver)
Create a notification for this product.
    Dell Vostro 3020 Tower Desktop Affected: 0 , < 1.36.0 or later (semver)
Create a notification for this product.
    Dell Vostro 3030 Affected: 0 , < 1.26.0 or later (semver)
Create a notification for this product.
    Dell Vostro 3030S Affected: 0 , < 1.26.0 or later (semver)
Create a notification for this product.
    Dell Vostro 3910 Affected: 0 , < 1.40.0 or later (semver)
Create a notification for this product.
    Dell Vostro 5620 Affected: 0 , < 1.36.0 or later (semver)
Create a notification for this product.
    Dell Vostro 5890 Affected: 0 , < 1.42.0 or later (semver)
Create a notification for this product.
    Dell Vostro 7620 Affected: 0 , < 1.37.0 or later (semver)
Create a notification for this product.
    Dell XPS 13 9315 Affected: 0 , < 1.38.0 or later (semver)
Create a notification for this product.
    Dell XPS 13 9340 Affected: 0 , < 1.26.0 or later (semver)
Create a notification for this product.
    Dell XPS 13 9350 Affected: 0 , < 1.21.0 or later (semver)
Create a notification for this product.
    Dell XPS 13 Plus 9320 Affected: 0 , < 2.30.0 or later (semver)
Create a notification for this product.
    Dell XPS 14 (14 Premium) DA14250 Affected: 0 , < 1.11.0 or later (semver)
Create a notification for this product.
    Dell XPS 14 9440 Affected: 0 , < 1.24.0 or later (semver)
Create a notification for this product.
    Dell XPS 15 9510 Affected: 0 , < 1.46.0 or later (semver)
Create a notification for this product.
    Dell XPS 15 9520 Affected: 0 , < 1.41.0 or later (semver)
Create a notification for this product.
    Dell XPS 15 9530 Affected: 0 , < 1.31.0 or later (semver)
Create a notification for this product.
    Dell XPS 16 (16 Premium) DA16250 Affected: 0 , < 1.13.0 or later (semver)
Create a notification for this product.
    Dell XPS 16 9640 Affected: 0 , < 1.23.0 or later (semver)
Create a notification for this product.
    Dell XPS 17 9720 Affected: 0 , < 1.40.0 or later (semver)
Create a notification for this product.
    Dell XPS 17 9730 Affected: 0 , < 1.27.0 or later (semver)
Create a notification for this product.
    Dell XPS 9320 Affected: 0 , < 2.30.0 or later (semver)
Create a notification for this product.
Credits
Dell would like to thank alexVinarskis for reporting this issue.
Show details on NVD website

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 15 3520",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.41.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "G15 5530",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.33.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Alienware 16 Area-51 AA16250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "2.4.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Alienware 16 Aurora AC16250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.13.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Alienware 16X Aurora AC16251",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "2.4.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Alienware 18 Area-51 AA18250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "2.4.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Alienware Area-51 AAT2250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.17.2 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Alienware Aurora ACT1250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.16.2 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Alienware m15 R6",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.44.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Alienware m15 R7",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.40.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Alienware m16 R1",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.34.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Alienware m16 R2",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.21.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Alienware m18 R1",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.34.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Alienware M18 R2",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.22.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Alienware x14 R2",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.32.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Alienware x16 R1",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.32.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Alienware X16 R2",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.22.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "ChengMing 3900",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.40.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "ChengMing 3910/3911",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.36.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Dell 14 DC14250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.7.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "14 Plus 2-in-1 DB04250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.13.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "14 Plus DB14250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.13.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "15 DC15250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.10.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "16 Plus 2-in-1 DB06250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.13.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "16 Plus DB16250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.13.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "24 All-in-One EC24250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "27 All-in-One EC27250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "G15 5510",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.40.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "G15 5511",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.43.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "G15 5520",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.41.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "G16 7620",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.41.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "G16 7630",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.33.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro 13 Plus PB13250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "2.13.4 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro 13 Plus PB13255",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro 13 Premium PA13250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "2.13.4 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro 14 Essential PV14250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.6.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro 14 PC14250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.2 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro 14 Plus PB14250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "2.13.4 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro 14 Plus PB14255",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro 14 Premium PA14250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "2.13.4 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro 16 PC16250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.2 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro 16 Plus PB16250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "2.13.4 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro 16 Plus PB16255",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro 24 All-In-One Plus QB24250 / Pro 24 All-In-One QC24250 / Pro 24 All-In-One QC24251",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Laptop PC14250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.2 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Laptop PC16250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.2 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Max 14 MC14250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.14.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Max 14 MC14255",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "2.4.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Max 16 MC16250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.14.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Max 16 MC16255",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "2.4.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Max Micro FCM2250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.2 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Max Slim FCS1250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.2 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Max Tower T2 FCT2250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.2 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Micro / QCM1255",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.13.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Micro Plus QBM1250 / Pro Micro QCM1250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Micro/Micro Plus QCM1250/QBM1250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Precision 7 T1",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Rugged 10 Tablets",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.9.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Rugged 12 Tablet",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.9.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Rugged 13 RA13250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.16.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Rugged 14 RB14250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.16.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Slim / QCS1255",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.13.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Slim Essential QVS1260",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Slim Plus QBS1250 / Pro Slim QCS1250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Slim Plus QBS1250/Pro Slim QCS1250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Tower / QCT1255",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.13.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Tower Essential QVT1260",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Tower Plus QBT1250 / Pro Tower QCT1250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Pro Tower Plus QBT1250/Pro Tower QCT1250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Slim ECS1250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Tower ECT1250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.15.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 13 5330",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.31.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 14 5420",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.36.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 14 5430",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.29.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 14 5440",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.22.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 14 7430 2-in-1",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.29.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 14 7440 2-in-1",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.22.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 14 Plus 7420",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.37.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 14 Plus 7430",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.29.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 14 Plus 7440",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.25.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 15 3511",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.46.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 15 3530",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.32.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 16 5620",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.36.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 16 5630",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.29.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 16 5640",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.21.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 16 7630 2-in-1",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.29.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 16 7640 2-in-1",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.21.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 16 Plus 7620",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.37.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 16 Plus 7630",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.29.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 16 Plus 7640",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.25.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 24 5420 All-in-One",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.29.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 24 5430 All-in-One",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.22.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 27 7720 All-in-One",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.29.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 27 7730 All-in-One",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.22.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 3020 Desktop",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.36.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 3020 S",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.36.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 3030",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.26.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 3030S",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.26.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 5410 All-in-One",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.38.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Inspiron 7710 All-in-One",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.38.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 3320",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.44.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 3340",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.31.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 5320",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.51.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 5330",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.36.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 5340",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.29.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 5350",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.23.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 5421",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.46.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 5430",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.39.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 5430 Rugged Laptop",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.43.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 5431",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.39.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 5440",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.31.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 5450",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.23.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 5520",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.51.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 5521",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.43.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 5530",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.36.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 5531",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.36.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 5540",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.29.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 5550",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.23.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 7030 Rugged Extreme",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.23.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 7230 Rugged Extreme",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.32.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 7320",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.50.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 7320 Detachable",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.47.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 7330",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.40.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 7330 Rugged Laptop",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.43.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 7340",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.30.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 7350",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.23.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 7420",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.50.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 7430",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.40.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 7440",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.31.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 7450",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.23.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 7520",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.50.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 7530",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.40.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 7640",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.31.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 7650",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.23.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 9330",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.37.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 9420",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.47.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 9430",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.40.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 9440 2-in-1",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.29.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 9450",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.21.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Latitude 9520",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.47.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex 3000 Micro / OptiPlex 3000 Small Form Factor / OptiPlex 3000 Tower",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.40.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex 3000 Thin Client",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.34.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex 3090 Ultra",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.42.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex 5000 Micro / OptiPlex 5000 Small Form Factor / OptiPlex 5000 Tower",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.40.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex 5090 Micro / OptiPlex 5090 Small Form Factor / OptiPlex 5090 Tower",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.42.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex 5400 All-In-One",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.1.59 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex 5490 AIO",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.47.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex 7000 Micro / OptiPlex 7000 Small Form Factor / OptiPlex 7000 Tower / OptiPlex 7000 XE Micro",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.40.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex 7000 OEM MT+",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.40.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex 7090 Tower",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.42.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex 7090 Ultra",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.42.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex 7400 All-In-One",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.1.59 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex 7490 AIO",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.47.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex AIO 7420",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.26.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex All-in-One 7410",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.36.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex Micro 7010 / OptiPlex Micro Plus 7010",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.36.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex Micro 7020",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.26.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex SFF 7020",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.26.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex Small Form Factor 7010 / OptiPlex Small Form Factor Plus 7010",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.36.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex Tower 7010 / OptiPlex Tower Plus 7010",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.36.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex Tower 7020",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.26.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "OptiPlex XE4 SFF",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.40.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "PC14255",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.14.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "PC16255",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.14.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 3260 XE Compact / Precision 3260 Compact",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "3.26.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 3280 CFF",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.24.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 3450",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.42.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 3460 XE Small Form Factor / Precision 3460 Small Form Factor",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "3.26.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 3470",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.39.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 3480",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.31.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 3490",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.23.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 3560",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.51.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 3561",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.43.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 3570",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.36.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 3571",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.36.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 3580",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.29.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 3581",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.29.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 3590",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.23.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 3591",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.23.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 3650 MT",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.47.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 3660",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "2.37.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 3680 Tower",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.26.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 5470",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.39.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 5480",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.27.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 5490",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.21.1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 5560",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.46.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 5570",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.41.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 5680",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.29.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 5690",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.23.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 5770",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.40.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 5860 Tower",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "3.8.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 7560",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.47.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 7670",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.38.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 7680",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.29.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 7760",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.47.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 7770",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.38.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 7780",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.29.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 7875 Tower",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "02.10.01 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision 7960 Tower",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "2.20.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Precision Tower 7865",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.26.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vostro 14 3420",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.41.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vostro 14 3430",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.32.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vostro 14 3440",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.22.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vostro 15 3510",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.46.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vostro 15 3520",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.41.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vostro 15 3530",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.32.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vostro 16 5630",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.29.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vostro 16 5640",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.21.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vostro 3020 Small Desktop",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.36.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vostro 3020 Tower Desktop",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.36.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vostro 3030",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.26.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vostro 3030S",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.26.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vostro 3910",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.40.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vostro 5620",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.36.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vostro 5890",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.42.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Vostro 7620",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.37.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "XPS 13 9315",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.38.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "XPS 13 9340",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.26.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "XPS 13 9350",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.21.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "XPS 13 Plus 9320",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "2.30.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "XPS 14 (14 Premium) DA14250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.11.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "XPS 14 9440",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.24.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "XPS 15 9510",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.46.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "XPS 15 9520",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.41.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "XPS 15 9530",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.31.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "XPS 16 (16 Premium) DA16250",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.13.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "XPS 16 9640",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.23.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "XPS 17 9720",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.40.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "XPS 17 9730",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "1.27.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "XPS 9320",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "2.30.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "other",
          "value": "Dell would like to thank alexVinarskis for reporting this issue."
        }
      ],
      "datePublic": "2026-06-30T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell Client Platform BIOS contains an Authentication Bypass by Primary Weakness vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability, leading to Information Disclosure."
            }
          ],
          "value": "Dell Client Platform BIOS contains an Authentication Bypass by Primary Weakness vulnerability. An unauthenticated attacker with physical access could potentially exploit this vulnerability, leading to Information Disclosure."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "PHYSICAL",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:L",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-305",
              "description": "CWE-305: Authentication Bypass by Primary Weakness",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-03T08:54:57.716Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000452197/dsa-2026-195"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-35159",
    "datePublished": "2026-07-03T08:08:31.672Z",
    "dateReserved": "2026-04-01T17:04:27.475Z",
    "dateUpdated": "2026-07-03T08:54:57.716Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-41121 (GCVE-0-2026-41121)

Vulnerability from cvelistv5 – Published: 2026-07-01 18:48 – Updated: 2026-07-01 19:22
VLAI?
Summary
Dell Device Management Agent, versions prior to DDMA 26.05, contain an Improper Link Resolution Before File Access ('Link Following’) vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges.
CWE
  • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
Assigner
References
Impacted products
Vendor Product Version
Dell Device Management Agent Affected: 0 , < 26.05 (semver)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-41121",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-07-01T19:22:18.900697Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-07-01T19:22:36.989Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Device Management Agent",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "26.05",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-06-23T18:46:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell Device Management Agent, versions prior to DDMA 26.05, contain an Improper Link Resolution Before File Access (\u0027Link Following\u2019) vulnerability. A low privileged attacker with local access could\u0026nbsp;potentially exploit this vulnerability, leading to Elevation of Privileges.\u0026nbsp;\u0026nbsp;"
            }
          ],
          "value": "Dell Device Management Agent, versions prior to DDMA 26.05, contain an Improper Link Resolution Before File Access (\u0027Link Following\u2019) vulnerability. A low privileged attacker with local access could\u00a0potentially exploit this vulnerability, leading to Elevation of Privileges."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-59",
              "description": "CWE-59: Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-07-01T18:48:15.797Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000473690/dsa-2026-258"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-41121",
    "datePublished": "2026-07-01T18:48:15.797Z",
    "dateReserved": "2026-04-17T05:04:42.886Z",
    "dateUpdated": "2026-07-01T19:22:36.989Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-40711 (GCVE-0-2026-40711)

Vulnerability from cvelistv5 – Published: 2026-06-26 12:31 – Updated: 2026-06-26 12:47
VLAI?
Summary
Dell Dell Container Storage Modules, version(s) csi-powerstore v2.16.0, csi-unity v2.16.0, csi-powerflex v2.16.0, csi-powermax v2.16.0, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution.
CWE
  • CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Assigner
References
Impacted products
Vendor Product Version
Dell Container Storage Modules Affected: 0 , < 2.15.2 or later (semver)
Affected: 0 , < 2.17.0 or later (semver)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-40711",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-26T12:47:21.617512Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-26T12:47:26.963Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Container Storage Modules",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "2.15.2 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "2.17.0 or later",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2026-06-18T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell Dell Container Storage Modules, version(s) csi-powerstore v2.16.0, csi-unity v2.16.0, csi-powerflex v2.16.0, csi-powermax v2.16.0, contain(s) an Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution."
            }
          ],
          "value": "Dell Dell Container Storage Modules, version(s) csi-powerstore v2.16.0, csi-unity v2.16.0, csi-powerflex v2.16.0, csi-powermax v2.16.0, contain(s) an Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-78",
              "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-26T12:31:00.184Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-za/000478300/dsa-2026-259-security-update-for-dell-container-storage-modules-multiple-vulnerabilities?msockid=2e06327ba9266050201f2467a8f461dd"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-40711",
    "datePublished": "2026-06-26T12:31:00.184Z",
    "dateReserved": "2026-04-15T05:04:31.837Z",
    "dateUpdated": "2026-06-26T12:47:26.963Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-46735 (GCVE-0-2026-46735)

Vulnerability from cvelistv5 – Published: 2026-06-25 13:48 – Updated: 2026-06-25 14:52
VLAI?
Summary
Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2.3, contain an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution.
CWE
  • CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Assigner
References
Impacted products
Vendor Product Version
Dell Display and Peripheral Manager Affected: 0 , < Version 2.3 and later (custom)
Create a notification for this product.
Credits
Dell Technologies would like to thank Ori Gabriel for reporting this issue.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-46735",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-25T14:52:49.071510Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-25T14:52:56.973Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Display and Peripheral Manager",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "Version 2.3 and later",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "other",
          "value": "Dell Technologies would like to thank Ori Gabriel for reporting this issue."
        }
      ],
      "datePublic": "2026-06-16T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2.3, contain an Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027) vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution."
            }
          ],
          "value": "Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2.3, contain an Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027) vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-78",
              "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-25T13:48:48.925Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-hk/000475656/dsa-2026-267?msockid=3021cac2195069ed3194ddad186a68f9"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-46735",
    "datePublished": "2026-06-25T13:48:48.925Z",
    "dateReserved": "2026-05-17T17:04:27.066Z",
    "dateUpdated": "2026-06-25T14:52:56.973Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-46734 (GCVE-0-2026-46734)

Vulnerability from cvelistv5 – Published: 2026-06-25 13:43 – Updated: 2026-06-26 03:55
VLAI?
Summary
Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2.3, contain an Improper Certificate Validation vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Protection mechanism bypass.
CWE
  • CWE-295 - Improper Certificate Validation
Assigner
References
Impacted products
Vendor Product Version
Dell Display and Peripheral Manager Affected: 0 , < Version 2.3 and later (custom)
Create a notification for this product.
Credits
Dell Technologies would like to thank Ori Gabriel for reporting this issue.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-46734",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-25T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-26T03:55:26.346Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Display and Peripheral Manager",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "Version 2.3 and later",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "other",
          "value": "Dell Technologies would like to thank Ori Gabriel for reporting this issue."
        }
      ],
      "datePublic": "2026-06-16T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2.3, contain an Improper Certificate Validation vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Protection mechanism bypass."
            }
          ],
          "value": "Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2.3, contain an Improper Certificate Validation vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Protection mechanism bypass."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-295",
              "description": "CWE-295: Improper Certificate Validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-25T13:43:51.196Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-hk/000475656/dsa-2026-267?msockid=3021cac2195069ed3194ddad186a68f9"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-46734",
    "datePublished": "2026-06-25T13:43:51.196Z",
    "dateReserved": "2026-05-17T17:04:27.066Z",
    "dateUpdated": "2026-06-26T03:55:26.346Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-46732 (GCVE-0-2026-46732)

Vulnerability from cvelistv5 – Published: 2026-06-25 13:36 – Updated: 2026-06-26 03:55
VLAI?
Summary
Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2.3, contain a Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges.
CWE
  • CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Assigner
References
Impacted products
Vendor Product Version
Dell Display and Peripheral Manager Affected: 0 , < Version 2.3 and later (custom)
Create a notification for this product.
Credits
Dell Technologies would like to thank maikroservice for reporting this issue.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-46732",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-25T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-26T03:55:36.130Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Display and Peripheral Manager",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "Version 2.3 and later",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "other",
          "value": "Dell Technologies would like to thank maikroservice for reporting this issue."
        }
      ],
      "datePublic": "2026-06-16T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2.3, contain a Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027) vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges.\u0026nbsp;"
            }
          ],
          "value": "Dell Display and Peripheral Manager (DDPM Mac), versions prior to 2.3, contain a Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027) vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-362",
              "description": "CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-25T13:36:57.170Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-hk/000475656/dsa-2026-267?msockid=3021cac2195069ed3194ddad186a68f9"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-46732",
    "datePublished": "2026-06-25T13:36:57.170Z",
    "dateReserved": "2026-05-17T17:04:27.066Z",
    "dateUpdated": "2026-06-26T03:55:36.130Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-41120 (GCVE-0-2026-41120)

Vulnerability from cvelistv5 – Published: 2026-06-25 13:28 – Updated: 2026-06-26 03:55
VLAI?
Summary
Dell Wyse Management Suite, versions prior to WMS 5.5 HF1, contain an Acceptance of Extraneous Untrusted Data With Trusted Data vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Remote Code Execution.
CWE
  • CWE-349 - Acceptance of Extraneous Untrusted Data With Trusted Data
Assigner
References
Impacted products
Vendor Product Version
Dell Wyse Management Suite Affected: 0 , < Version 5.5 HF1 or later (custom)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-41120",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-25T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-26T03:55:50.560Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Wyse Management Suite",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "Version 5.5 HF1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2026-06-16T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell Wyse Management Suite, versions prior to WMS 5.5 HF1, contain an Acceptance of Extraneous Untrusted Data With Trusted Data vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Remote Code Execution."
            }
          ],
          "value": "Dell Wyse Management Suite, versions prior to WMS 5.5 HF1, contain an Acceptance of Extraneous Untrusted Data With Trusted Data vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Remote Code Execution."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-349",
              "description": "CWE-349: Acceptance of Extraneous Untrusted Data With Trusted Data",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-25T13:28:53.068Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-in/000465356/dsa-2026-225?msockid=3021cac2195069ed3194ddad186a68f9"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-41120",
    "datePublished": "2026-06-25T13:28:53.068Z",
    "dateReserved": "2026-04-17T05:04:42.886Z",
    "dateUpdated": "2026-06-26T03:55:50.560Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-49506 (GCVE-0-2026-49506)

Vulnerability from cvelistv5 – Published: 2026-06-25 13:23 – Updated: 2026-06-26 16:02
VLAI?
Summary
Dell Wyse Management Suite, versions prior to WMS 5.5 HF1, contain an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Remote Code Execution.
CWE
  • CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Assigner
References
Impacted products
Vendor Product Version
Dell Wyse Management Suite Affected: 0 , < Version 5.5 HF1 or later (custom)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-49506",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-26T03:55:50.224929Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-26T16:02:53.949Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Wyse Management Suite",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "Version 5.5 HF1 or later",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2026-06-16T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell Wyse Management Suite, versions prior to WMS 5.5 HF1, contain an Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Remote Code Execution."
            }
          ],
          "value": "Dell Wyse Management Suite, versions prior to WMS 5.5 HF1, contain an Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027) vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Remote Code Execution."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-22",
              "description": "CWE-22: Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-25T13:23:58.069Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-in/000465356/dsa-2026-225?msockid=3021cac2195069ed3194ddad186a68f9"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-49506",
    "datePublished": "2026-06-25T13:23:58.069Z",
    "dateReserved": "2026-05-31T17:04:24.517Z",
    "dateUpdated": "2026-06-26T16:02:53.949Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-46733 (GCVE-0-2026-46733)

Vulnerability from cvelistv5 – Published: 2026-06-25 13:17 – Updated: 2026-06-26 03:55
VLAI?
Summary
Dell Display and Peripheral Manager (DDPM Windows), versions prior to 2.3, contain an Improper Access Control vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution.
CWE
  • CWE-284 - Improper Access Control
Assigner
References
Impacted products
Vendor Product Version
Dell Display and Peripheral Manager Affected: 0 , < Version 2.3 and later (custom)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-46733",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-25T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-26T03:55:48.131Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Display and Peripheral Manager",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "Version 2.3 and later",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2026-06-16T06:30:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell Display and Peripheral Manager (DDPM Windows), versions prior to 2.3, contain an Improper Access Control vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution."
            }
          ],
          "value": "Dell Display and Peripheral Manager (DDPM Windows), versions prior to 2.3, contain an Improper Access Control vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-284",
              "description": "CWE-284: Improper Access Control",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-25T13:17:39.256Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-fm/000477679/dsa-2026-277?msockid=3021cac2195069ed3194ddad186a68f9"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-46733",
    "datePublished": "2026-06-25T13:17:39.256Z",
    "dateReserved": "2026-05-17T17:04:27.066Z",
    "dateUpdated": "2026-06-26T03:55:48.131Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-44271 (GCVE-0-2026-44271)

Vulnerability from cvelistv5 – Published: 2026-06-22 19:00 – Updated: 2026-06-23 14:13
VLAI?
Summary
Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access.
CWE
  • CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Assigner
Impacted products
Vendor Product Version
Dell Wyse Management Suite (WMS) Affected: 0 , < 2605 (semver)
Create a notification for this product.
Credits
Dell would like to thank Duc Luong Tran (janlele91) and Huynh Dinh Vu (WinD39) for reporting this issue.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-44271",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-23T14:13:32.446587Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-23T14:13:45.687Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Wyse Management Suite (WMS)",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "2605",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Dell would like to thank Duc Luong Tran (janlele91) and Huynh Dinh Vu (WinD39) for reporting this issue."
        }
      ],
      "datePublic": "2026-06-16T18:59:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain an Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027) vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access."
            }
          ],
          "value": "Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain an Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027) vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-89",
              "description": "CWE-89: Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-22T19:00:51.136Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "url": "https://www.dell.com/support/kbdoc/en-us/000472001/dsa-2026-247"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-44271",
    "datePublished": "2026-06-22T19:00:51.136Z",
    "dateReserved": "2026-05-05T17:04:45.713Z",
    "dateUpdated": "2026-06-23T14:13:45.687Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-44272 (GCVE-0-2026-44272)

Vulnerability from cvelistv5 – Published: 2026-06-22 18:56 – Updated: 2026-06-23 18:47
VLAI?
Summary
Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access.
CWE
  • CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Assigner
References
Impacted products
Vendor Product Version
Dell Wyse Management Suite (WMS) Affected: 0 , < 2605 (semver)
Create a notification for this product.
Credits
Dell would like to thank Duc Luong Tran (janlele91) and Huynh Dinh Vu (WinD39) for reporting this issue.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-44272",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-23T03:56:08.817867Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-23T18:47:49.715Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Wyse Management Suite (WMS)",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "2605",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Dell would like to thank Duc Luong Tran (janlele91) and Huynh Dinh Vu (WinD39) for reporting this issue."
        }
      ],
      "datePublic": "2026-06-16T18:54:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain an Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027) vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access."
            }
          ],
          "value": "Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain an Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027) vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-89",
              "description": "CWE-89: Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-22T18:56:59.066Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000472001/dsa-2026-247"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-44272",
    "datePublished": "2026-06-22T18:56:59.066Z",
    "dateReserved": "2026-05-05T17:04:45.713Z",
    "dateUpdated": "2026-06-23T18:47:49.715Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-44273 (GCVE-0-2026-44273)

Vulnerability from cvelistv5 – Published: 2026-06-22 18:51 – Updated: 2026-06-24 03:56
VLAI?
Summary
Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain a Use of Default Credentials vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information Disclosure.
CWE
Assigner
References
Impacted products
Vendor Product Version
Dell Wyse Management Suite (WMS) Affected: 0 , < 2605 (semver)
Create a notification for this product.
Credits
Dell would like to thank Christophe Schleypen - NATO OTAN for reporting this issue
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-44273",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-06-23T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-24T03:56:06.699Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Wyse Management Suite (WMS)",
          "vendor": "Dell",
          "versions": [
            {
              "lessThan": "2605",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "Dell would like to thank Christophe Schleypen - NATO OTAN for reporting this issue"
        }
      ],
      "datePublic": "2026-06-16T18:50:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain a Use of Default Credentials vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information Disclosure."
            }
          ],
          "value": "Dell Wyse Management Suite (WMS), versions prior to WMS 2605, contain a Use of Default Credentials vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information Disclosure."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 6,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-1392",
              "description": "CWE-1392: Use of Default Credentials",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-06-22T18:51:37.736Z",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.dell.com/support/kbdoc/en-us/000472001/dsa-2026-247"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 1.0.2"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2026-44273",
    "datePublished": "2026-06-22T18:51:37.736Z",
    "dateReserved": "2026-05-05T17:04:45.713Z",
    "dateUpdated": "2026-06-24T03:56:06.699Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}