Primary

Context

Dell Repository Manager Uncontrolled Search Path Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Patched

A vulnerability has been identified in Dell Repository Manager (DRM) versions prior to 3.4.8) that involves an uncontrolled search path element. This vulnerability allows a low-privileged attacker with local access to exploit the issue, potentially leading to arbitrary code execution and escalation of privileges.

Impact

Exploitation of this vulnerability could result in unauthorized arbitrary code execution with elevated privileges on the affected system.

Remediation

Users can upgrade to Dell Repository Manager version 3.4.8 or later to address this vulnerability. The update is available through the Dell Support website.

Added: Feb 23, 2026, 2:19 PM

Updated: Feb 23, 2026, 6:26 PM

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

10.0

exploitability

2.8

remediation

7.7

relevance

3.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

10.0

exploitability

2.8

remediation

7.7

relevance

3.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell Repository Manager Uncontrolled Search Path Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Impact

Remediation

Affected Products

Dell Repository Manager

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating