CVE-2025-43886

Summary

Dell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) a Path Traversal: '…/…//' vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Filesystem access for attacker.

Affected Software

VendorProductVersion RangeStatus
DellPowerProtect Data ManagerN/A < 19.21 build 11affected

Weaknesses

  • CWE-35: CWE-35: Path Traversal: '…/…//'

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References