exploitDog

CVE-2026-22269

Опубликовано: 19 фев. 2026

Источник: nvd

CVSS3: 4.7

EPSS Низкий

Описание

Dell PowerProtect Data Manager, version(s) prior to 19.22, contain(s) an Improper Verification of Source of a Communication Channel vulnerability in the REST API. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to protection mechanism bypass.

Ссылки

https://www.dell.com/support/kbdoc/en-us/000429778/dsa-2026-046-security-update-for-dell-powerprotect-data-manager-multiple-vulnerabilities
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:dell:powerprotect_data_manager:*:*:*:*:*:*:*:*

Версия до 19.22 (исключая)

EPSS

Процентиль: 15%

0.00047

Низкий

4.7 Medium

CVSS3

Дефекты

CWE-940

Связанные уязвимости

GHSA-23j7-qm67-668g

CVSS3: 4.7

github

около 1 месяца назад

Dell PowerProtect Data Manager, version(s) prior to 19.22, contain(s) an Improper Verification of Source of a Communication Channel vulnerability in the REST API. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to protection mechanism bypass.

EPSS

Процентиль: 15%

0.00047

Низкий

4.7 Medium

CVSS3

Дефекты

CWE-940