Description
Dell Device Management Agent (DDMA), versions prior to 26.02, contain an Improper Check for Unusual or Exceptional Conditions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Denial of Service.
Published: 2026-03-04
Score: 3.3 Low
EPSS: < 1% Very Low
KEV: No
Impact: Denial of Service
Action: Apply Patch
AI Analysis

Impact

Dell Device Management Agent contains an Improper Check for Unusual or Exceptional Conditions that permits a local attacker with low privileges to disrupt the agent’s operation. The flaw can cause the agent to crash or enter an erroneous state, preventing it from performing its device management duties and potentially affecting device availability. The impact is limited to the affected agent instances and does not provide remote code execution or data exposure.

Affected Systems

The vulnerability affects Dell Device Management Agent versions earlier than 26.02. Only installations running those legacy versions are susceptible.

Risk and Exploitability

The CVSS score of 3.3 indicates low severity, and the EPSS score of less than 1% suggests that exploitation is unlikely at present. The vulnerability is not listed in the CISA Known Exploited Vulnerabilities catalog, further reducing the immediate threat level. However, because the attack vector is local and requires only low‑privileged access, any user with physical or administrative access could trigger a denial of service, disrupting device management operations.

Generated by OpenCVE AI on April 16, 2026 at 13:31 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Dell Device Management Agent to version 26.02 or later
  • Restart the DDMA service to ensure the new version takes effect
  • Restrict local user privileges to prevent unauthorized low‑privileged access to the agent

Generated by OpenCVE AI on April 16, 2026 at 13:31 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 16 Apr 2026 14:00:00 +0000

Type Values Removed Values Added
Title Denial of Service via Improper Condition Check in Dell Device Management Agent

Mon, 09 Mar 2026 17:30:00 +0000

Type Values Removed Values Added
First Time appeared Dell device Management Agent
CPEs cpe:2.3:a:dell:device_management_agent:*:*:*:*:*:*:*:*
Vendors & Products Dell device Management Agent

Thu, 05 Mar 2026 09:15:00 +0000

Type Values Removed Values Added
First Time appeared Dell
Dell device Management Agent (ddma)
Vendors & Products Dell
Dell device Management Agent (ddma)

Wed, 04 Mar 2026 18:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 04 Mar 2026 17:15:00 +0000

Type Values Removed Values Added
Description Dell Device Management Agent (DDMA), versions prior to 26.02, contain an Improper Check for Unusual or Exceptional Conditions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Denial of Service.
Weaknesses CWE-754
References
Metrics cvssV3_1

{'score': 3.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L'}

Subscriptions

Dell Device Management Agent Device Management Agent (ddma)
cve-icon MITRE

Status: PUBLISHED

Assigner: dell

Published:

Updated: 2026-03-04T17:28:55.467Z

Reserved: 2026-01-09T18:05:08.763Z

Link: CVE-2026-22760

cve-icon Vulnrichment

Updated: 2026-03-04T17:28:50.338Z

cve-icon NVD

Status : Analyzed

Published: 2026-03-04T17:16:18.450

Modified: 2026-03-09T17:20:04.707

Link: CVE-2026-22760

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-16T13:45:21Z

Weaknesses