- Description
- Dell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) a Plaintext Storage of a Password vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to gain unauthorized access with privileges of the compromised account.
- Source
- security_alert@emc.com
- NVD status
- Analyzed
- Products
- powerprotect_data_manager
CVSS 3.1
- Type
- Primary
- Base score
- 4.4
- Impact score
- 3.6
- Exploitability score
- 0.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
- security_alert@emc.com
- CWE-256
- Hype score
- Not currently trending
CVE-2025-43938 Dell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) a Plaintext Storage of a Password vulnerability. A high privileged attacker with local … https://t.co/qIX03Cdr8W
@CVEnew
10 Sept 2025
329 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-43938 Dell PowerProtect Data Manager Plaintext Password Storage Vulnerability in Hyper-V Environments https://t.co/HxIvTtQtcK
@VulmonFeeds
10 Sept 2025
74 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:dell:powerprotect_data_manager:*:*:*:*:*:*:*:*",
"matchCriteriaId": "2D4285AD-BBFC-40E5-85F9-46A0BD5EDC07",
"versionEndExcluding": "19.21",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]