7.8 CVE-2026-32652
Dell AIOps Collector versions prior to 1.18.3 contain a "Use of Default Credentials" vulnerability. A low privileged attacker with console access could potentially exploit this vulnerability to gain Filesystem access. This vulnerability only affects fresh installations of Collector versions earlier than 1.18.3. Systems that have been upgraded (either manually or automatically) to version 1.18.3 or later are not impacted, even if they were originally installed on an earlier version.
https://nvd.nist.gov/vuln/detail/CVE-2026-32652
Categories
CWE-1392 : Use of Default Credentials
It is common practice for products to be designed to usedefault keys, passwords, or other mechanisms forauthentication. The rationale is to simplify themanufacturing process or the system administrator's task ofinstallation and deployment into an enterprise. However, ifadmins do not change the defaults, it is easier for attackersto bypass authentication quickly across multipleorganizations.
References
AFFECTED (from MITRE)
| Vendor |
Product |
Versions |
| Dell |
AIOps |
- < 1.18.3 or later [affected]
|
| © 2022 The MITRE Corporation. This work is reproduced and distributed with the permission of The MITRE Corporation. |
CPE
REMEDIATION
EXPLOITS
Exploit-db.com
| id |
description |
date |
|
| No known exploits |
POC Github
Other Nist (github, ...)
CAPEC
Common Attack Pattern Enumerations and Classifications
| id |
description |
severity |
| No entry |
Cybersecurity needs ?
Strengthen software security from the outset with our DevSecOps expertise
Integrate security right from the start of the software development cycle for more robust applications and greater customer confidence.
Our team of DevSecOps experts can help you secure your APIs, data pipelines, CI/CD chains, Docker containers and Kubernetes deployments.
Discover this offer
