CVE-2025-46607
HIGH WAF: Low
CVSS 7.2
Published: 2026-04-17
CWE-287
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 8.4 through 8.5 contain an improper authentication vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to unauthorized access.
WAF Coverage Analysis
Improper Authentication
Low WAF Coverage
OWASP: A07:2021 Identification and Authentication Failures
Affected Software
| Vendor | Product | Version |
|---|---|---|
| dell | data_domain_operating_system | 8.4.0.0 - 8.5.0.0 |
References
- www.dell.com (Vendor Advisory)