{"document":{"category":"csaf_vex","csaf_version":"2.0","title":"CVE-2026-32652: Dell AIOps Collector versions prior to 1","publisher":{"category":"vendor","name":"HarborGuard Database","namespace":"https://database.harborguard.co"},"tracking":{"id":"CVE-2026-32652","status":"final","version":"1","initial_release_date":"2026-06-17T15:29:33.811Z","current_release_date":"2026-06-17T15:29:33.811Z","revision_history":[{"date":"2026-06-17T15:29:33.811Z","number":"1","summary":"Initial machine-readable export from HarborGuard."}]},"distribution":{"tlp":{"label":"WHITE"},"text":"Public CVE data; freely redistributable."},"notes":[{"category":"description","text":"Dell AIOps Collector versions prior to 1.18.3 contain a \"Use of Default Credentials\" vulnerability. A low privileged attacker with console access could potentially exploit this vulnerability to gain Filesystem access. This vulnerability only affects fresh installations of Collector versions earlier than 1.18.3. Systems that have been upgraded (either manually or automatically) to version 1.18.3 or later are not impacted, even if they were originally installed on an earlier version.","title":"CVE description"}],"references":[{"category":"self","summary":"CVE-2026-32652 on HarborGuard Database","url":"https://database.harborguard.co/cve/CVE-2026-32652"},{"category":"external","summary":"CVE Record","url":"https://www.cve.org/CVERecord?id=CVE-2026-32652"},{"category":"external","summary":"dell.com","url":"https://www.dell.com/support/kbdoc/en-in/000477931/dsa-2026-231-security-update-for-dell-aiops-collector-for-default-credential-vulnerability"}]},"product_tree":{"branches":[{"category":"vendor","name":"Dell","branches":[{"category":"product_name","name":"AIOps","branches":[{"category":"product_version_range","name":"<1.18.3 or later","product":{"name":"Dell AIOps <1.18.3 or later","product_id":"CSAFPID-1","product_identification_helper":{"cpe":"cpe:2.3:a:dell:aiops:*:*:*:*:*:*:*:*"}}}]}]}]},"vulnerabilities":[{"cve":"CVE-2026-32652","title":"Dell AIOps Collector versions prior to 1","notes":[{"category":"description","text":"Dell AIOps Collector versions prior to 1.18.3 contain a \"Use of Default Credentials\" vulnerability. A low privileged attacker with console access could potentially exploit this vulnerability to gain Filesystem access. This vulnerability only affects fresh installations of Collector versions earlier than 1.18.3. Systems that have been upgraded (either manually or automatically) to version 1.18.3 or later are not impacted, even if they were originally installed on an earlier version.","title":"CVE description"}],"product_status":{"known_affected":["CSAFPID-1"]},"scores":[{"cvss_v3":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH"},"products":["CSAFPID-1"]}],"remediations":[{"category":"vendor_fix","details":"Update to a fixed version: 1.18.3 or later.","product_ids":["CSAFPID-1"]}]}]}