{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-30T02:40:17.514","vulnerabilities":[{"cve":{"id":"CVE-2025-21105","sourceIdentifier":"security_alert@emc.com","published":"2025-02-20T12:15:11.233","lastModified":"2025-07-31T17:31:21.743","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Dell RecoverPoint for Virtual Machines 6.0.X contains a command execution vulnerability. A Low privileged malicious user with local access could potentially exploit this vulnerability by running the specific binary and perform any administrative action permitted by it resulting in shutting down the server, modifying the configuration leading to gain access to unauthorized data."},{"lang":"es","value":"Dell RecoverPoint for Virtual Machines 6.0.X contiene una vulnerabilidad de ejecución de comandos. Un usuario malintencionado con pocos privilegios y acceso local podría aprovechar esta vulnerabilidad ejecutando el binario específico y realizando cualquier acción administrativa permitida por este, lo que provocaría el apagado del servidor y la modificación de la configuración, lo que daría lugar a un acceso no autorizado a datos."}],"metrics":{"cvssMetricV31":[{"source":"security_alert@emc.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L","baseScore":6.6,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":1.8,"impactScore":4.7},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"security_alert@emc.com","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:dell:recoverpoint_for_virtual_machines:6.0:sp1:*:*:*:*:*:*","matchCriteriaId":"DD0ABCD5-9273-4799-A916-3518ED5EBB46"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:recoverpoint_for_virtual_machines:6.0:sp1_p1:*:*:*:*:*:*","matchCriteriaId":"800D6F27-0B30-4E0A-94F6-B52367D50761"},{"vulnerable":true,"criteria":"cpe:2.3:a:dell:recoverpoint_for_virtual_machines:6.0:sp1_p2:*:*:*:*:*:*","matchCriteriaId":"97E4273C-646D-402A-B560-13B1F3024488"}]}]}],"references":[{"url":"https://www.dell.com/support/kbdoc/en-us/000287503/dsa-2025-101-security-update-for-dell-recoverpoint-for-virtual-machines-multiple-component-vulnerabilities","source":"security_alert@emc.com","tags":["Vendor Advisory"]}]}}]}