Dell PowerProtect Data Domain
Moderate fix4 remedies
cpe:2.3:a:dell:powerprotect_data_domain:*:*:*:*:*:*:*
Moderate fix4 remedies
- >= 7.7.1.0, <= 8.4.0.0
- >= 8.3.1.0, <= 8.3.1.10
- >= 7.13.1.0, <= 7.13.1.40
- >= 7.10.1.0, <= 7.10.1.70
Dell PowerProtect Data Domain Exposure of Sensitive Information Vulnerability
Vulnerability
Patched
A vulnerability allowing the exposure of sensitive information to unauthorized actors exists in Dell PowerProtect Data Domain appliances running Data Domain Operating System (DD OS) versions 7.7.1.0 prior to 8.4.0.0, as well as in LTS2025 release version 8.3.1.10, LTS2024 release versions 7.13.1.0 through 7.13.1.40, and LTS2023 release versions 7.10.1.0 through 7.10.1.70. This vulnerability could be exploited by a high-privileged attacker with remote access, potentially leading to unauthorized information disclosure.
Impact
Exploitation of this vulnerability could result in unauthorized exposure of sensitive information.
Remediation
Users can upgrade to Dell PowerProtect Data Domain DD OS version 8.5.0.0 or later, version 8.3.1.20 or later, version 7.13.1.50 or later, or version 7.10.1.80 or later. For instructions on how to upgrade the Data Domain Operating System, see the Dell Knowledge Base article 'How to Upgrade the Data Domain Operating System'.
Added: Jan 9, 2026, 4:27 PM
Updated: Jan 9, 2026, 4:28 PM
Vulnerability Rating
Custom Algorithm
spread
4.5impact
2.5exploitability
4.0remediation
7.7relevance
2.0threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.