Vulnerability Description
Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credential vulnerability. This is considered critical as an unauthenticated remote attacker with knowledge of the hardcoded credential could potentially exploit this vulnerability leading to unauthorized access to the underlying operating system and root-level persistence. Dell recommends that customers upgrade or apply one of the remediations as soon as possible.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Recoverpoint For Virtual Machines | < 6.0 |
Related Weaknesses (CWE)
References
- https://www.dell.com/support/kbdoc/en-us/000426773/dsa-2026-079PatchVendor Advisory
- https://cloud.google.com/blog/topics/threat-intelligence/unc6201-exploiting-dellThird Party Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-US Government Resource
FAQ
What is CVE-2026-22769?
CVE-2026-22769 is a vulnerability with a CVSS score of 10.0 (CRITICAL). Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credential vulnerability. This is considered critical as an unauthenticated remote attacker with knowledge of...
How severe is CVE-2026-22769?
CVE-2026-22769 has been rated CRITICAL with a CVSS base score of 10.0/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2026-22769?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Recoverpoint For Virtual Machines.