PT-2026-55546 · Dell · Dell Powerprotect Data Domain

Published

2026-07-03

·

Updated

2026-07-03

·

CVE-2026-49815

CVSS v3.1

7.2

High

VectorAV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Dell PowerProtect Data Domain versions 7.7.1.0 through 8.7 Dell PowerProtect Data Domain LTS2026 release versions 8.6.1.0 through 8.6.1.10 Dell PowerProtect Data Domain LTS2025 release versions 8.3.1.0 through 8.3.1.30 Dell PowerProtect Data Domain LTS2024 release versions 7.13.1.0 through 7.13.1.70
Description An OS command injection issue exists due to improper neutralization of special elements used in an OS command. A high privileged attacker with remote access could exploit this to execute arbitrary OS commands.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-49815

Affected Products

Dell Powerprotect Data Domain