GHSA-ch84-4cgh-f3fc

GHSA-ch84-4cgh-f3fc PUBLISHED CVSS 8.399999618530273 HIGH

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.5, LTS2025 release version 8.3.1.0 through 8.3.1.20, LTS2024 release versions 7.13.1.0 through 7.13.1.50, contain a use of weak credentials vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerability, leading to unauthorized access to the system.

Risk Scores

CVSS 3.1

8.399999618530273

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Timeline

Apr 17, 2026 CVE Published
Apr 18, 2026 Security Advisory

References

https://nvd.nist.gov/vuln/detail/CVE-2026-23853 advisory
https://www.dell.com/support/kbdoc/en-us/000450699/dsa-2026-060-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities url

Open in Interactive Console →