Severity by source
AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N
Lifecycle Timeline
2DescriptionCVE.org
Dell Live Optics Windows and Personal Edition collectors contain an improper certificate validation vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability leading to loss of confidentiality and integrity.
AnalysisAI
Improper SSL/TLS certificate validation in Dell Live Optics Windows and Personal Edition collectors allows remote attackers to intercept and modify data transmitted by the collector. The vulnerability requires network positioning (man-in-the-middle) and user interaction, making exploitation moderately complex but enabling complete compromise of data confidentiality and integrity for collector communications. Dell has released patches in version 27.1.10.1 to address the certificate validation flaw.
Technical ContextAI
This vulnerability affects Dell Live Optics data collection agents for Windows and Personal Edition deployments. The flaw stems from CWE-295 (Improper Certificate Validation), where the collector fails to properly validate SSL/TLS certificates when establishing encrypted connections. This allows an attacker positioned on the network path to present fraudulent certificates that the collector will accept, enabling man-in-the-middle attacks. The affected CPE indicates the vulnerability exists across the Dell Live Optics product line prior to the patched release. Live Optics collectors are typically deployed in enterprise environments to gather infrastructure performance and capacity data, making them sensitive components that handle potentially privileged system information.
RemediationAI
Upgrade Dell Live Optics Windows and Personal Edition collectors to version 27.1.10.1 or later, which implements proper SSL/TLS certificate validation. Download the patched version from Dell Support following guidance in security advisory DSA-2026-221 (https://www.dell.com/support/kbdoc/en-us/000464862/dsa-2026-221-security-update-for-dell-live-optics-collector-ssl-vulnerability). If immediate patching is not feasible, restrict collector communications to trusted networks only using network segmentation or VPN tunnels to prevent man-in-the-middle positioning. Deploy network monitoring to detect certificate anomalies or unexpected certificate authorities in collector traffic. Note that network restrictions may impact collector functionality if cloud-based Live Optics services are accessed, and VPN overhead may affect performance metrics collection accuracy.
SQL injection vulnerability in d4d/statusFilter.php in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.2
The ViewPoint web application in Dell SonicWALL Global Management System (GMS) before 7.2 SP2, SonicWALL Analyzer before
The MySQL component in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) 9.0.1.19899 and earlier has a default passwor
Multiple SQL injection vulnerabilities in Dell SonicWall Scrutinizer 11.0.1 allow remote authenticated users to execute
Dell RecoverPoint for Virtual Machines prior to 6.0.3.1 HF1 contains hardcoded credentials (CVE-2026-22769, CVSS 10.0) t
An unrestricted file upload vulnerability exists in Dell (acquired by Quest) KACE K1000 System Management Appliance vers
cgi-bin/admin.cgi in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.0 does not requir
The IPMI 1.5 functionality in Dell iDRAC6 modular before 3.65, iDRAC6 monolithic before 1.98, and iDRAC7 before 1.57.57
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of EMC Data Protection
d4d/uploader.php in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.0 allows remote at
Dell dbutil_2_3.sys driver contains an insufficient access control vulnerability which may lead to escalation of privile
Dell Unity, version(s) 5.5 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('
Same weakness CWE-295 – Improper Certificate Validation
View allSame technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-30763
GHSA-58g4-m6h8-h97x