{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-22T05:45:52.719","vulnerabilities":[{"cve":{"id":"CVE-2025-43938","sourceIdentifier":"security_alert@emc.com","published":"2025-09-10T16:15:38.050","lastModified":"2025-10-20T14:02:23.670","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Dell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) a Plaintext Storage of a Password vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to gain unauthorized access with privileges of the compromised account."},{"lang":"es","value":"Dell PowerProtect Data Manager, versión(es) 19.19 y 19.20, Hyper-V contiene una vulnerabilidad de almacenamiento de contraseña en texto plano. Un atacante con muchos privilegios y acceso local podría potencialmente explotar esta vulnerabilidad, lo que llevaría a la divulgación de ciertas credenciales de usuario. El atacante podría usar las credenciales expuestas para obtener acceso no autorizado con los privilegios de la cuenta comprometida."}],"metrics":{"cvssMetricV31":[{"source":"security_alert@emc.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:N/A:N","baseScore":5.0,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"HIGH","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":0.6,"impactScore":4.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N","baseScore":4.4,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":0.8,"impactScore":3.6}]},"weaknesses":[{"source":"security_alert@emc.com","type":"Secondary","description":[{"lang":"en","value":"CWE-256"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:dell:powerprotect_data_manager:*:*:*:*:*:*:*:*","versionEndExcluding":"19.21","matchCriteriaId":"2D4285AD-BBFC-40E5-85F9-46A0BD5EDC07"}]}]}],"references":[{"url":"https://www.dell.com/support/kbdoc/en-us/000367456/dsa-2025-326-security-update-for-dell-powerprotect-data-manager-multiple-security-vulnerabilities","source":"security_alert@emc.com","tags":["Vendor Advisory"]}]}}]}