Primary

Context

Dell PowerProtect Data Manager Improper Input Validation Vulnerability Allowing Arbitrary File Read

Vulnerability

Patched

An improper input validation vulnerability has been identified in Dell PowerProtect Data Manager versions prior to 19.19. This vulnerability allows a low-privileged attacker with remote access to potentially read arbitrary files on the system.

Impact

Exploitation of this vulnerability could lead to unauthorized reading of files, potentially allowing attackers to access sensitive information.

Remediation

Users can upgrade to Dell PowerProtect Data Manager version 19.20 build 15 or later. For the PowerProtect DM5500, version 19.20 drivers and downloads are available on the Dell Support website.

Added: Jul 30, 2025, 6:20 PM

Updated: Jul 30, 2025, 6:20 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

3.3

exploitability

4.9

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

3.3

exploitability

4.9

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell PowerProtect Data Manager Improper Input Validation Vulnerability Allowing Arbitrary File Read

Vulnerability

Impact

Remediation

Affected Products

Dell PowerProtect Data Manager

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating