Vulnerabilities > Dell > EMC Data Domain OS > 5.2

DATE CVE VULNERABILITY TITLE RISK
2023-12-14 CVE-2023-44278 Path Traversal vulnerability in Dell products
Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain a path traversal vulnerability.
local
low complexity
dell CWE-22
6.7
2023-12-14 CVE-2023-44279 OS Command Injection vulnerability in Dell products
Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain an OS command injection vulnerability in administrator CLI.
local
low complexity
dell CWE-78
6.7
2023-12-14 CVE-2023-44284 SQL Injection vulnerability in Dell products
Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain an SQL Injection vulnerability.
network
low complexity
dell CWE-89
4.3
2023-12-14 CVE-2023-44285 Unspecified vulnerability in Dell products
Dell PowerProtect DD, versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain an improper access control vulnerability.
local
low complexity
dell
7.8
2023-12-14 CVE-2023-44286 Cross-site Scripting vulnerability in Dell products
Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain a DOM-based Cross-Site Scripting vulnerability.
network
low complexity
dell CWE-79
6.1
2023-12-14 CVE-2023-48667 OS Command Injection vulnerability in Dell products
Dell PowerProtect DD, versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain an OS command injection vulnerability in administrator CLI.
network
low complexity
dell CWE-78
7.2
2023-12-14 CVE-2023-44277 OS Command Injection vulnerability in Dell products
Dell PowerProtect DD, versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain an OS command injection vulnerability in the CLI.
local
low complexity
dell CWE-78
7.8
2023-02-01 CVE-2023-23692 OS Command Injection vulnerability in Dell EMC Data Domain OS
Dell EMC prior to version DDOS 7.9 contain(s) an OS command injection Vulnerability.
network
low complexity
dell CWE-78
8.8
2017-05-04 CVE-2017-4983 Unspecified vulnerability in Dell EMC Data Domain OS
EMC Data Domain OS 5.2 through 5.7 before 5.7.3.0 and 6.0 before 6.0.1.0 is affected by a privilege escalation vulnerability that may potentially be exploited by attackers to compromise the affected system.
local
low complexity
dell
4.6
2016-06-19 CVE-2016-0912 Permissions, Privileges, and Access Controls vulnerability in Dell EMC Data Domain OS
EMC Data Domain OS 5.4 through 5.7 before 5.7.2.0 allows remote authenticated users to bypass intended password-change restrictions by leveraging access to (1) a different account with the same role as a target account or (2) an account's session at an unattended workstation.
network
low complexity
dell CWE-264
critical
9.0