Primary

Context

Dell NetWorker Unquoted Search Path Vulnerability Allowing Code Execution

Vulnerability

Patched

A vulnerability allowing code execution through an unquoted search path has been identified in Dell NetWorker versions prior to 19.11.0.3, all versions of 19.10, and earlier releases. This vulnerability could be exploited by a low-privileged attacker with local access.

Impact

Exploitation of this vulnerability could lead to unauthorized code execution on the affected system.

Remediation

Users can upgrade to Dell NetWorker version 19.12 or later. Instructions for downloading the update are available on the Dell NetWorker Drivers page.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

10.0

exploitability

3.5

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

10.0

exploitability

3.5

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell NetWorker Unquoted Search Path Vulnerability Allowing Code Execution

Vulnerability

Impact

Remediation

Affected Products

Dell NetWorker

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating