Dell Data Domain Operating System vulnerabilities
47 known vulnerabilities affecting dell/data_domain_operating_system.
Total CVEs
47
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH16MEDIUM28LOW2
Vulnerabilities
Page 1 of 3
CVE-2025-46645HIGHCVSS 7.2≥ 7.7.1.0, < 7.10.1.80≥ 7.13.1.0, < 7.13.1.50+2 more2026-01-09
CVE-2025-46645 [HIGH] CWE-78 CVE-2025-46645: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.4.0.0, LTS2025 release version 8.3.1.10, LTS2024 release versions 7.13.1.0 through 7.13.1.40, LTS 2023 release versions 7.10.1.0 through 7.10.1.70, contain an Improper Neutralization of Special Elements used in an OS Command ('OS Command
nvd
CVE-2025-46643MEDIUMCVSS 4.4≥ 7.7.1.0, < 7.10.1.80≥ 7.13.1.0, < 7.13.1.50+2 more2026-01-09
CVE-2025-46643 [MEDIUM] CWE-122 CVE-2025-46643: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.4.0.0, LTS2025 release version 8.3.1.10, LTS2024 release versions 7.13.1.0 through 7.13.1.40, LTS 2023 release versions 7.10.1.0 through 7.10.1.70, contain a Heap-based Buffer Overflow vulnerability. A high privileged attacker with lo
nvd
CVE-2025-46676MEDIUMCVSS 4.9≥ 7.7.1.0, < 7.10.1.80≥ 7.13.1.0, < 7.13.1.50+2 more2026-01-09
CVE-2025-46676 [MEDIUM] CWE-200 CVE-2025-46676: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.4.0.0, LTS2025 release version 8.3.1.10, LTS2024 release versions 7.13.1.0 through 7.13.1.40, LTS 2023 release versions 7.10.1.0 through 7.10.1.70, contain an Exposure of Sensitive Information to an Unauthorized Actor vulnerability. A
nvd
CVE-2025-46644MEDIUMCVSS 6.7≥ 7.7.1.0, < 7.10.1.80≥ 7.13.1.0, < 7.13.1.50+2 more2026-01-09
CVE-2025-46644 [MEDIUM] CWE-78 CVE-2025-46644: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.4.0.0, LTS2025 release version 8.3.1.10, LTS2024 release versions 7.13.1.0 through 7.13.1.40, LTS2023 release versions 7.10.1.0 through 7.10.1.70, contain an Improper Neutralization of Special Elements used in an OS Command ('OS Comman
nvd
CVE-2025-43909HIGHCVSS 7.5≥ 7.7.1.0, < 7.10.1.70≥ 7.13.1.0, < 7.13.1.40+2 more2025-10-07
CVE-2025-43909 [HIGH] CWE-327 CVE-2025-43909: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2025 release version 8.3.1.0, LTS2024 release versions 7.13.1.0 through 7.13.1.30, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain an Use of a Broken or Risky Cryptographic Algorithm vulnerability in the DD boos
nvd
CVE-2025-43891HIGHCVSS 7.5≥ 7.7.1.0, < 7.10.1.70≥ 7.13.1.0, < 7.13.1.40+2 more2025-10-07
CVE-2025-43891 [HIGH] CWE-327 CVE-2025-43891: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2025 release version 8.3.1.0, LTS2024 release versions 7.13.1.0 through 7.13.1.30, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain an use of a Broken or Risky Cryptographic Algorithm vulnerability in the Authent
nvd
CVE-2025-43912HIGHCVSS 7.5≥ 7.7.1.0, < 7.10.1.70≥ 7.13.1.0, < 7.13.1.40+2 more2025-10-07
CVE-2025-43912 [HIGH] CWE-122 CVE-2025-43912: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2025 release version 8.3.1.0, LTS2024 release versions 7.13.1.0 through 7.13.1.30, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain a Heap-based Buffer Overflow vulnerability. An unauthenticated attacker with rem
nvd
CVE-2025-43914HIGHCVSS 7.8≥ 7.7.1.0, < 7.10.1.70≥ 7.13.1.0, ≤ 7.13.1.40+2 more2025-10-07
CVE-2025-43914 [HIGH] CWE-266 CVE-2025-43914: Dell PowerProtect Data Domain BoostFS for Linux Ubuntu systems of Feature Release versions 7.7.1.0 t
Dell PowerProtect Data Domain BoostFS for Linux Ubuntu systems of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2025 release version 8.3.1.0, LTS2024 release versions 7.13.1.0 through 7.13.1.30, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local ac
nvd
CVE-2025-43727HIGHCVSS 7.5≥ 7.7.1.0, < 7.10.1.60≥ 7.13.1.0, < 7.13.1.30+1 more2025-10-07
CVE-2025-43727 [HIGH] CWE-303 CVE-2025-43727: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.1.0.10, LTS2024 release Versions 7.13.1.0 through 7.13.1.25, LTS 2023 release versions 7.10.1.0 through 7.10.1.50, contain an incorrect Implementation of Authentication Algorithm vulnerability in the RestAPI. An unauthenticated attacker
nvd
CVE-2025-43889HIGHCVSS 7.5≥ 7.7.1.0, < 7.10.1.70≥ 7.13.1.0, < 7.13.1.40+1 more2025-10-07
CVE-2025-43889 [HIGH] CWE-22 CVE-2025-43889: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.4, LTS2024 release Versions 7.13.1.0 through 7.13.1.30, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in the UI. An unauthent
nvd
CVE-2025-43890MEDIUMCVSS 6.7≥ 7.7.1.0, < 7.10.1.70≥ 7.13.1.0, < 7.13.1.40+2 more2025-10-07
CVE-2025-43890 [MEDIUM] CWE-78 CVE-2025-43890: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2025 release version 8.3.1.0, LTS2024 release versions 7.13.1.0 through 7.13.1.30, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain an Improper Neutralization of Special Elements used in an OS Command ('OS Comma
nvd
CVE-2025-43911MEDIUMCVSS 6.7≥ 7.7.1.0, < 7.10.1.70≥ 7.13.1.0, < 7.13.1.40+2 more2025-10-07
CVE-2025-43911 [MEDIUM] CWE-78 CVE-2025-43911: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2025 release version 8.3.1.0, LTS2024 release versions 7.13.1.0 through 7.13.1.30, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain an Improper Neutralization of Special Elements used in an OS Command ('OS Comma
nvd
CVE-2025-36565MEDIUMCVSS 6.7≥ 7.7.1.0, < 7.10.1.60≥ 7.13.1.0, < 7.13.1.30+1 more2025-10-07
CVE-2025-36565 [MEDIUM] CWE-88 CVE-2025-36565: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.1.0.10, LTS2024 release Versions 7.13.1.0 through 7.13.1.25, LTS 2023 release versions 7.10.1.0 through 7.10.1.50, contain an Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability. A high priv
nvd
CVE-2025-43908MEDIUMCVSS 6.7≥ 7.7.1.0, < 7.10.1.70≥ 7.13.1.0, < 7.13.1.40+2 more2025-10-07
CVE-2025-43908 [MEDIUM] CWE-78 CVE-2025-43908: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2025 release version 8.3.1.0, LTS2024 release versions 7.13.1.0 through 7.13.1.30, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain an Improper Neutralization of Special Elements used in an OS Command ('OS Comma
nvd
CVE-2025-43906MEDIUMCVSS 6.7≥ 7.7.1.0, < 7.10.1.70≥ 7.13.1.0, < 7.13.1.40+2 more2025-10-07
CVE-2025-43906 [MEDIUM] CWE-78 CVE-2025-43906: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2025 release version 8.3.1.0, LTS2024 release versions 7.13.1.0 through 7.13.1.30, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain an Improper Neutralization of Special Elements used in an OS Command ('OS Comma
nvd
CVE-2025-43905MEDIUMCVSS 6.5≥ 7.7.1.0, < 7.10.1.70≥ 7.13.1.0, < 7.13.1.40+2 more2025-10-07
CVE-2025-43905 [MEDIUM] CWE-88 CVE-2025-43905: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2025 release version 8.3.1.0, LTS2024 release versions 7.13.1.0 through 7.13.1.30, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain an Improper Neutralization of Argument Delimiters in a Command ('Argument Injec
nvd
CVE-2025-43907MEDIUMCVSS 6.5≥ 7.7.1.0, < 7.10.1.70≥ 7.13.1.0, < 7.13.1.40+2 more2025-10-07
CVE-2025-43907 [MEDIUM] CWE-35 CVE-2025-43907: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2025 release version 8.3.1.0, LTS2024 release versions 7.13.1.0 through 7.13.1.30, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain a Path Traversal: '.../...//' vulnerability. A low privileged attacker with rem
nvd
CVE-2025-36566MEDIUMCVSS 6.7≥ 7.7.1.0, < 7.10.1.60≥ 7.13.1.0, < 7.13.1.30+1 more2025-10-07
CVE-2025-36566 [MEDIUM] CWE-78 CVE-2025-36566: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.1.0.10, LTS2024 release Versions 7.13.1.0 through 7.13.1.25, LTS 2023 release versions 7.10.1.0 through 7.10.1.50, contain an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A h
nvd
CVE-2025-43910MEDIUMCVSS 4.4≥ 7.7.1.0, < 7.10.1.70≥ 7.13.1.0, < 7.13.1.40+2 more2025-10-07
CVE-2025-43910 [MEDIUM] CWE-121 CVE-2025-43910: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2025 release version 8.3.1.0, LTS2024 release versions 7.13.1.0 through 7.13.1.30, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain a Stack-based Buffer Overflow vulnerability in the DDSH CLI. A high privileged
nvd
CVE-2025-36569MEDIUMCVSS 6.7≥ 7.7.1.0, < 7.10.1.60≥ 7.13.1.0, < 7.13.1.30+1 more2025-10-07
CVE-2025-36569 [MEDIUM] CWE-78 CVE-2025-36569: Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.1.0.10, LTS2024 release Versions 7.13.1.0 through 7.13.1.25, LTS 2023 release versions 7.10.1.0 through 7.10.1.50, contain an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A h
nvd
1 / 3Next →