Dell PowerProtect Data Domain: Unauthorized Access to System

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

8.4

Dell PowerProtect Data Domain: Unauthorized Access to System

CVE-2026-23853

Summary

Dell PowerProtect Data Domain systems with outdated operating system versions are at risk of being accessed by unauthorized users. This could allow malicious individuals to gain control of the system. Dell recommends upgrading to a secure version of the Data Domain Operating System to prevent this vulnerability.

Original title

Original description

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.5, LTS2025 release version 8.3.1.0 through 8.3.1.20, LTS2024 release versions 7.13.1.0 through 7.13.1.50, contain a use of weak credentials vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerability, leading to unauthorized access to the system.

nvd CVSS3.1 8.4

Vulnerability type

CWE-1391

https://www.dell.com/support/kbdoc/en-us/000450699/dsa-2026-060-security-update-...

Published: 17 Apr 2026 · Updated: 17 Apr 2026 · First seen: 17 Apr 2026