Dell PowerProtect Data Domain
Moderate fix7 remedies
cpe:2.3:a:dell:powerprotect_data_domain:*:*:*:*:*:*:*
Moderate fix7 remedies
- >= 7.7.1.0, <= 8.6
- >= 8.3.1.0, <= 8.3.1.20
- >= 7.13.1.0, <= 7.13.1.60
Dell PowerProtect Data Domain Stack-Based Buffer Overflow Vulnerability Allowing Arbitrary Command Execution as Root
Vulnerability
Patched
A stack-based buffer overflow vulnerability has been identified in Dell PowerProtect Data Domain. This issue affects versions 7.7.1.0 through 8.6, as well as LTS2025 release versions 8.3.1.0 through 8.3.1.20 and LTS2024 release versions 7.13.1.0 through 7.13.1.60. The vulnerability allows a high-privileged attacker with local access to exploit the issue, potentially leading to arbitrary command execution with root privileges.
Impact
Exploitation of this vulnerability could result in unauthorized arbitrary command execution with root privileges on the affected system.
Remediation
Users can upgrade to Dell PowerProtect Data Domain versions 8.6.1.10, 8.7.0.0 or later, or version 7.13.1.70 or later. Instructions for upgrading the Data Domain Operating System are available on the Dell Support website.
Added: Apr 20, 2026, 5:42 PM
Updated: Apr 20, 2026, 5:42 PM
Vulnerability Rating
Custom Algorithm
spread
4.5impact
7.5exploitability
2.4remediation
7.7relevance
6.3threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.