Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
3.3
Dell PowerProtect Agent: Local Access Could Expose Sensitive Data
CVE-2026-28264
Summary
A security issue exists in older versions of the Dell PowerProtect Agent that can allow a low-level user with access to the system to potentially view sensitive information. This could be exploited by an attacker with local access. To fix this, update to version 20.1 or later.
Original title
Dell PowerProtect Agent Service, version(s) prior to 20.1, contain(s) an Incorrect Permission Assignment for Critical Resource vulnerability. A low privileged attacker with local access could poten...
Original description
Dell PowerProtect Agent Service, version(s) prior to 20.1, contain(s) an Incorrect Permission Assignment for Critical Resource vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure.
nvd CVSS3.1
3.3
Vulnerability type
CWE-732
Incorrect Permission Assignment for Critical Resource
Published: 8 Apr 2026 · Updated: 10 Apr 2026 · First seen: 8 Apr 2026