PT-2026-21517 · Dell · Dell Repository Manager

Michele Damico

Published

2026-02-23

Updated

2026-02-28

CVE-2026-21420

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Dell Repository Manager versions prior to 3.4.8

Description Dell Repository Manager (DRM) has an issue related to an uncontrolled search path element. A local attacker with limited privileges could potentially exploit this, leading to arbitrary code execution and privilege escalation.

Recommendations Update Dell Repository Manager to version 3.4.8 or later.

Fix

RCE

LPE

Uncontrolled Search Path Element

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-427

Related Identifiers

CVE-2026-21420

Affected Products

Dell Repository Manager

PT-2026-21517 · Dell · Dell Repository Manager

CVE-2026-21420

Weakness Enumeration

Related Identifiers

Affected Products

References · 8