Dell PowerProtect Data Domain
Moderate fix4 remedies
cpe:2.3:a:dell:powerprotect_data_domain:*:*:*:*:*:*:*
Moderate fix4 remedies
- >= 7.7.1.0, <= 8.4.0.0
- >= 8.3.1.0, <= 8.3.1.10
- >= 7.13.1.0, <= 7.13.1.40
- >= 7.10.1.0, <= 7.10.1.70
Dell PowerProtect Data Domain Heap-Based Buffer Overflow Vulnerability Leading to Denial-of-Service
Vulnerability
Patched
A heap-based buffer overflow vulnerability has been identified in Dell PowerProtect Data Domain appliances running Data Domain Operating System (DD OS) versions 7.7.1.0 prior to 8.4.0.0, as well as in LTS2025 release version 8.3.1.10, LTS2024 release versions 7.13.1.0 through 7.13.1.40, and LTS2023 release versions 7.10.1.0 through 7.10.1.70. This vulnerability allows a high-privileged attacker with local access to potentially exploit the issue, leading to a denial-of-service condition.
Impact
Exploitation of this vulnerability can cause a denial-of-service condition, disrupting the availability of the affected system.
Remediation
Users can upgrade to Dell PowerProtect Data Domain DD OS version 8.5.0.0 or later, version 8.3.1.20 or later, version 7.13.1.50 or later, or version 7.10.1.80 or later. For instructions on how to upgrade the Data Domain Operating System, see the Dell Knowledge Base article 'How to Upgrade the Data Domain Operating System'.
Added: Jan 9, 2026, 4:29 PM
Updated: Jan 9, 2026, 4:30 PM
Vulnerability Rating
Custom Algorithm
spread
4.5impact
0.6exploitability
3.0remediation
7.7relevance
1.9threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.