VDB

CVE-2026-23775

CVE-2026-23775 PUBLISHED CVSS 7.599999904632568 HIGH

Dell PowerProtect Data Domain appliances with Data Domain Operating System (DD OS) of Feature Release versions 8.0 through 8.5, LTS2025 release version 8.3.1.0 through 8.3.1.10 contain an insertion of sensitive information into log file vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to credential exposures. Authentication attempts as the compromised user would need to be authorized by a high privileged DD user. This vulnerability only affects systems with retention lock enabled.

EPSS 0.02% · 4.6th percentile

Risk Scores

CVSS 3.1
7.599999904632568
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:H
EPSS Score
0.02%
4.6th percentile

Affected Products

VendorProductVersions
DellPowerProtect Data Domain appliances0, 0

Timeline

  • Apr 17, 2026 CVE Published
  • Apr 17, 2026 PoC Published
  • Apr 17, 2026 CVE Updated
  • Apr 17, 2026 PoC Published
  • Apr 18, 2026 Security Advisory
  • May 18, 2026 EPSS Score
  • May 19, 2026 EPSS Score
  • May 20, 2026 EPSS Score
  • May 21, 2026 EPSS Score
  • May 22, 2026 EPSS Score
  • May 23, 2026 EPSS Score
  • May 24, 2026 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›