FKIE_CVE-2026-22769

Vulnerability from fkie_nvd - Published: 2026-02-17 20:22 - Updated: 2026-02-18 20:01
Severity ?
10.0 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
10.0 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Summary
Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credential vulnerability. This is considered critical as an unauthenticated remote attacker with knowledge of the hardcoded credential could potentially exploit this vulnerability leading to unauthorized access to the underlying operating system and root-level persistence. Dell recommends that customers upgrade or apply one of the remediations as soon as possible.
References
security_alert@emc.comhttps://www.dell.com/support/kbdoc/en-us/000426773/dsa-2026-079Patch, Vendor Advisory
134c704f-9b21-4f2e-91b3-4a467353bcc0https://cloud.google.com/blog/topics/threat-intelligence/unc6201-exploiting-dell-recoverpoint-zero-dayThird Party Advisory
134c704f-9b21-4f2e-91b3-4a467353bcc0https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-22769US Government Resource
Impacted products
Vendor Product Version
dell recoverpoint_for_virtual_machines *
dell recoverpoint_for_virtual_machines 6.0
dell recoverpoint_for_virtual_machines 6.0
dell recoverpoint_for_virtual_machines 6.0
dell recoverpoint_for_virtual_machines 6.0
dell recoverpoint_for_virtual_machines 6.0
dell recoverpoint_for_virtual_machines 6.0
dell recoverpoint_for_virtual_machines 6.0
dell recoverpoint_for_virtual_machines 6.0
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:dell:recoverpoint_for_virtual_machines:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "CDBD4124-5704-4491-837E-C9F6C3B46602",
              "versionEndExcluding": "6.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:dell:recoverpoint_for_virtual_machines:6.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "D8A90920-381D-4D65-8DDA-A850B1765919",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:dell:recoverpoint_for_virtual_machines:6.0:sp1:*:*:*:*:*:*",
              "matchCriteriaId": "DD0ABCD5-9273-4799-A916-3518ED5EBB46",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:dell:recoverpoint_for_virtual_machines:6.0:sp1_p1:*:*:*:*:*:*",
              "matchCriteriaId": "800D6F27-0B30-4E0A-94F6-B52367D50761",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:dell:recoverpoint_for_virtual_machines:6.0:sp1_p2:*:*:*:*:*:*",
              "matchCriteriaId": "97E4273C-646D-402A-B560-13B1F3024488",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:dell:recoverpoint_for_virtual_machines:6.0:sp2:*:*:*:*:*:*",
              "matchCriteriaId": "20C3E4AB-B2BA-40CA-AD59-00F2A56C2107",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:dell:recoverpoint_for_virtual_machines:6.0:sp2_p1:*:*:*:*:*:*",
              "matchCriteriaId": "12F25A3A-65DF-4D20-8A94-71A4763CDA38",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:dell:recoverpoint_for_virtual_machines:6.0:sp3:*:*:*:*:*:*",
              "matchCriteriaId": "497DD11A-28C7-4211-BB03-2AB916AEA8A3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:dell:recoverpoint_for_virtual_machines:6.0:sp3_p1:*:*:*:*:*:*",
              "matchCriteriaId": "3E357BFB-EF68-4FC7-89A3-233567F41534",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credential vulnerability. This is considered critical as an unauthenticated remote attacker with knowledge of the hardcoded credential could potentially exploit this vulnerability leading to unauthorized access to the underlying operating system and root-level persistence. Dell recommends that customers upgrade or apply one of the remediations as soon as possible."
    },
    {
      "lang": "es",
      "value": "Dell RecoverPoint para M\u00e1quinas Virtuales, en versiones anteriores a 6.0.3.1 HF1, contiene una vulnerabilidad de credenciales almacenadas en el c\u00f3digo. Esto se considera cr\u00edtico ya que un atacante en remoto no autenticado que conozca la credencial almacenada podr\u00eda, potencialmente, explotar esta vulnerabilidad, lo que permitir\u00eda un acceso no autorizado al sistema operativo subyacente y persistencia a nivel de root. Dell recomienda que los clientes actualicen o apliquen uno de los remedios lo antes posible."
    }
  ],
  "id": "CVE-2026-22769",
  "lastModified": "2026-02-18T20:01:15.983",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 10.0,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 6.0,
        "source": "security_alert@emc.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 10.0,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 6.0,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2026-02-17T20:22:09.800",
  "references": [
    {
      "source": "security_alert@emc.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://www.dell.com/support/kbdoc/en-us/000426773/dsa-2026-079"
    },
    {
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://cloud.google.com/blog/topics/threat-intelligence/unc6201-exploiting-dell-recoverpoint-zero-day"
    },
    {
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "tags": [
        "US Government Resource"
      ],
      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-22769"
    }
  ],
  "sourceIdentifier": "security_alert@emc.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-798"
        }
      ],
      "source": "security_alert@emc.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-798"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.