Vulnerabilities > Dell > EMC Data Domain OS

DATE CVE VULNERABILITY TITLE RISK
2023-12-14 CVE-2023-44278 Path Traversal vulnerability in Dell products
Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain a path traversal vulnerability.
local
low complexity
dell CWE-22
6.7
6.7
2023-12-14 CVE-2023-44279 OS Command Injection vulnerability in Dell products
Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain an OS command injection vulnerability in administrator CLI.
local
low complexity
dell CWE-78
6.7
6.7
2023-12-14 CVE-2023-44284 SQL Injection vulnerability in Dell products
Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain an SQL Injection vulnerability.
network
low complexity
dell CWE-89
4.3
4.3
2023-12-14 CVE-2023-44285 Unspecified vulnerability in Dell products
Dell PowerProtect DD, versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain an improper access control vulnerability.
local
low complexity
dell
7.8
7.8
2023-12-14 CVE-2023-44286 Cross-site Scripting vulnerability in Dell products
Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain a DOM-based Cross-Site Scripting vulnerability.
network
low complexity
dell CWE-79
6.1
6.1
2023-12-14 CVE-2023-48667 OS Command Injection vulnerability in Dell products
Dell PowerProtect DD, versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain an OS command injection vulnerability in administrator CLI.
network
low complexity
dell CWE-78
7.2
7.2
2023-12-14 CVE-2023-44277 OS Command Injection vulnerability in Dell products
Dell PowerProtect DD, versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain an OS command injection vulnerability in the CLI.
local
low complexity
dell CWE-78
7.8
7.8
2023-02-01 CVE-2023-23692 OS Command Injection vulnerability in Dell EMC Data Domain OS
Dell EMC prior to version DDOS 7.9 contain(s) an OS command injection Vulnerability.
network
low complexity
dell CWE-78
8.8
8.8
2017-05-04 CVE-2017-4983 Unspecified vulnerability in Dell EMC Data Domain OS
EMC Data Domain OS 5.2 through 5.7 before 5.7.3.0 and 6.0 before 6.0.1.0 is affected by a privilege escalation vulnerability that may potentially be exploited by attackers to compromise the affected system.
local
low complexity
dell
6.7
6.7
2017-02-03 CVE-2016-8216 Permissions, Privileges, and Access Controls vulnerability in Dell EMC Data Domain OS
EMC Data Domain OS (DD OS) 5.4 all versions, EMC Data Domain OS (DD OS) 5.5 family all versions prior to 5.5.5.0, EMC Data Domain OS (DD OS) 5.6 family all versions prior to 5.6.2.0, EMC Data Domain OS (DD OS) 5.7 family all versions prior to 5.7.2.10 has a command injection vulnerability that could potentially be exploited by malicious users to compromise the affected system.
local
low complexity
dell CWE-264
6.7
6.7