CVE-2025-21105

Name of the Vulnerable Software and Affected Versions Dell RecoverPoint for Virtual Machines version 6.0.X

Description A command execution vulnerability exists, allowing a low-privileged malicious user with local access to potentially exploit it by running a specific binary. This could result in shutting down the server, modifying the configuration, and gaining access to unauthorized data.

Recommendations For version 6.0.X, consider restricting access to the specific binary that can be exploited to minimize the risk of unauthorized actions until a patch is available. As a temporary workaround, limit administrative actions permitted by the binary to prevent potential configuration modifications and unauthorized data access. At the moment, there is no information about a newer version that contains a fix for this vulnerability.