Primary

Context

Dell PowerProtect Data Manager Hyper-V Insertion of Sensitive Information into Log File Vulnerability

Vulnerability

Patched

A vulnerability allowing the insertion of sensitive information into log files has been identified in Dell PowerProtect Data Manager, Hyper-V, versions 19.19 and 19.20. This vulnerability could be exploited by a low-privileged attacker with local access, potentially leading to unauthorized access.

Impact

Exploitation of this vulnerability could result in unauthorized access.

Remediation

Users can upgrade to Dell PowerProtect Data Manager version 19.21.0-11 or later. Instructions for downloading this version are available on the Dell PowerProtect Data Manager Drivers & Downloads page.

Added: Sep 10, 2025, 4:29 PM

Updated: Sep 10, 2025, 4:29 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

3.5

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

3.5

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell PowerProtect Data Manager Hyper-V Insertion of Sensitive Information into Log File Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Dell PowerProtect Data Manager

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating