Dell PowerProtect Data Domain
Moderate fix7 remedies
cpe:2.3:a:dell:powerprotect_data_domain:*:*:*:*:*:*:*
Moderate fix7 remedies
- >= 7.7.1.0, <= 8.6
- >= 8.3.1.0, <= 8.3.1.20
- >= 7.13.1.0, <= 7.13.1.60
Dell PowerProtect Data Domain Improper Input Validation Vulnerability Allowing Arbitrary Command Execution
Vulnerability
Patched
An improper input validation vulnerability has been identified in Dell PowerProtect Data Domain. This vulnerability is present in versions 7.7.1.0 prior to 8.6, LTS2025 release versions 8.3.1.0 through 8.3.1.20, and LTS2024 release versions 7.13.1.0 through 7.13.1.60. A high-privileged attacker with remote access could exploit this vulnerability, leading to arbitrary command execution with root privileges.
Impact
Exploitation of this vulnerability could result in unauthorized arbitrary command execution with root privileges on the affected system.
Remediation
Users can upgrade to Dell PowerProtect Data Domain versions 8.6.1.10, 8.7.0.0 or later. For those on LTS2025, version 8.3.1.30 or later is recommended. LTS2024 users should upgrade to version 7.13.1.70 or later.
Added: Apr 20, 2026, 5:53 PM
Updated: Apr 20, 2026, 5:53 PM
Vulnerability Rating
Custom Algorithm
spread
4.5impact
7.5exploitability
4.4remediation
7.7relevance
6.3threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.