Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.
10.0

Dell RecoverPoint for Virtual Machines Hard-Coded Credentials Exposure

Known exploited Exploitation likelihood: 34%
CVE-2026-22769 CVE-2026-22769
Summary

Dell RecoverPoint for Virtual Machines stores sensitive credentials in a way that allows unauthorized access to the underlying operating system. This means an attacker could gain access to sensitive areas of the system without a password. Update to the latest version to fix this issue.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software
VendorProductAffected versionsFix available
dell recoverpoint for virtual machines (rp4vms) All versions
dell recoverpoint_for_virtual_machines <= 6.0
dell recoverpoint_for_virtual_machines 6.0
dell recoverpoint_for_virtual_machines 6.0
dell recoverpoint_for_virtual_machines 6.0
dell recoverpoint_for_virtual_machines 6.0
dell recoverpoint_for_virtual_machines 6.0
dell recoverpoint_for_virtual_machines 6.0
dell recoverpoint_for_virtual_machines 6.0
dell recoverpoint_for_virtual_machines 6.0
Original title
Dell RecoverPoint for Virtual Machines (RP4VMs) Use of Hard-coded Credentials Vulnerability
Original description
Dell RecoverPoint for Virtual Machines (RP4VMs) contains an use of hard-coded credentials vulnerability that could allow an unauthenticated remote attacker to gain unauthorized access to the underlying operating system and root-level persistence.
Vulnerability type
CWE-798 Use of Hard-coded Credentials
Published: 18 Feb 2026 · Updated: 15 Mar 2026 · First seen: 6 Mar 2026