PT-2026-33432 · Dell · Data Domain Operating System+1
Published
2026-04-14
·
Updated
2026-04-28
·
CVE-2026-23776
CVSS v2.0
9.0
High
| Vector | AV:N/AC:L/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) versions 7.7.1.0 through 8.5
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) versions 8.3.1.0 through 8.3.1.20
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) versions 7.13.1.0 through 7.13.1.60
Description
An improper certificate validation issue exists in certificate-based login. A low privileged attacker with remote access could exploit this flaw to achieve elevation of privileges.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
LPE
Improper Certificate Validation
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Data Domain Operating System
Dell Powerprotect Data Domain