Dell PowerProtect Data Domain
Moderate fix9 remedies
cpe:2.3:a:dell:powerprotect_data_domain:*:*:*:*:*:*:*
Moderate fix9 remedies
- >= 7.7.1.0, <= 8.3.0.15
- >= 8.3.1.0, <= 8.3.1.0
- >= 7.13.1.0, <= 7.13.1.30
- >= 7.10.1.0, <= 7.10.1.60
Dell PowerProtect Data Domain Path Traversal Vulnerability Allowing Information Exposure
Vulnerability
Patched
A path traversal vulnerability has been identified in Dell PowerProtect Data Domain systems running Data Domain Operating System (DD OS) Feature Release versions 7.7.1.0 prior to 8.3.0.15, as well as LTS2025 release version 8.3.1.0, LTS2024 release versions 7.13.1.0 through 7.13.1.30, and LTS2023 release versions 7.10.1.0 through 7.10.1.60. This vulnerability allows low privileged attackers with remote access to potentially exploit the issue, leading to unauthorized information exposure.
Impact
Exploitation of this vulnerability could result in unauthorized access to sensitive information.
Remediation
Users can upgrade to Dell PowerProtect Data Domain DD OS version 8.4.0.0 or later. Instructions for upgrading the Data Domain Operating System are available on the Dell Support website.
Added: Oct 7, 2025, 7:25 PM
Updated: Oct 7, 2025, 7:25 PM
Vulnerability Rating
Custom Algorithm
spread
4.5impact
2.5exploitability
4.9remediation
7.7relevance
0.7threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.