Dell Avamar Security Flaw: High-Risk File Upload Risk

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

6.5

Dell Avamar Security Flaw: High-Risk File Upload Risk

CVE-2025-36598

Summary

Dell Avamar versions before 19.12 with patch 338905 have a security flaw that could allow an attacker with remote access to upload malicious files. This could lead to security issues and potentially harm your organization. Update to version 19.12 with patch 338905 to fix the issue.

Original title

Original description

Dell Avamar, versions prior to 19.12 with patch 338905, contains an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in the Security. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to upload malicious files.

nvd CVSS3.1 6.5

Vulnerability type

CWE-22 Path Traversal

https://www.dell.com/support/kbdoc/en-us/000347698/dsa-2025-271-security-update-...

Published: 17 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026