Primary

Context

Dell PowerProtect Data Domain Improper Authentication Vulnerability Allowing Unauthorized Access

Vulnerability

Patched

An improper authentication vulnerability has been identified in Dell PowerProtect Data Domain appliances running Data Domain Operating System (DD OS) Feature Release versions 8.4 through 8.5. This vulnerability allows a high-privileged attacker with remote access to exploit the issue, potentially leading to unauthorized access.

Impact

Exploitation of this vulnerability could result in unauthorized access to the affected system.

Remediation

Users can upgrade to Dell PowerProtect Data Domain DD OS versions 8.6.1.10, 8.7.0.0 or later. For instructions on how to upgrade, see the Dell PowerProtect Data Domain Upgrade Guide. After upgrading, some security scanners may still report false positive findings. For more details, refer to the respective False Positive KB articles.

Added: Apr 17, 2026, 12:37 PM

Updated: Apr 17, 2026, 12:37 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

5.0

exploitability

4.4

remediation

7.7

relevance

6.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

5.0

exploitability

4.4

remediation

7.7

relevance

6.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell PowerProtect Data Domain Improper Authentication Vulnerability Allowing Unauthorized Access

Vulnerability

Impact

Remediation

Affected Products

Dell PowerProtect Data Domain Operating System

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating