CVE-2025-29987

Name of the Vulnerable Software and Affected Versions Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) versions prior to 8.3.0.15

Description The issue is related to insufficient granularity of access control. An authenticated user from a trusted remote client could exploit this to execute arbitrary commands with root privileges.

Recommendations For versions prior to 8.3.0.15, update to version 8.3.0.15 or later to resolve the issue. As a temporary workaround, consider restricting access to trusted remote clients and limiting the privileges of authenticated users to minimize the risk of exploitation.