PT-2026-20779 · Dell · Dell Powerprotect Data Manager

Published

2026-02-19

Updated

2026-02-19

CVE-2026-22267

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Dell PowerProtect Data Manager versions prior to 19.22

Description Dell PowerProtect Data Manager versions prior to 19.22 contain an Incorrect Privilege Assignment issue. A low-privileged attacker with remote access could potentially exploit this, leading to Elevation of privileges.

Recommendations Update Dell PowerProtect Data Manager to version 19.22 or later. As a temporary workaround, restrict remote access to the system. Monitor for unusual activity.

Fix

LPE

Incorrect Privilege Assignment

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-266

Related Identifiers

CVE-2026-22267

Affected Products

Dell Powerprotect Data Manager

PT-2026-20779 · Dell · Dell Powerprotect Data Manager

CVE-2026-22267

Weakness Enumeration

Related Identifiers

Affected Products

References · 8