CNNVD-202510-894 Information
CNNVD ID
CNNVD-202510-894
Related CVE
- CNNVD Published: 2025-10-07
Description (Chinese)
Dell PowerProtect Data Domain(Dell PowerProtect DD)是美国戴尔(Dell)公司的一套用于数据保护、备份、存储和重复数据消除的硬件设备。 Dell PowerProtect Data Domain存在参数注入漏洞,该漏洞源于参数分隔符中和不当,可能导致任意命令执行和权限提升。以下版本受到影响:7.7.1.0版本至8.1.0.10版本、7.13.1.0版本至7.13.1.25版本和7.10.1.0版本至7.10.1.50版本。
Description (English)
Dell PowerProtec Data Domain (Dell PowerProtec DD) is a set of hardware equipment for data protection, backup, storage and duplicate data elimination from Dell, United States. Dell PowerProtec Data Domain has a gap in the parameters, which stems from the inappropriateity of the parameter separator, which may lead to arbitrary command execution and increased authority. The following versions were affected: 7.7.1.0 to 8.1.010, 7.13.1.0 to 7.1.125 and 7.10.1.0 to 7.10.1.50.
Hazard Level
High
Vulnerability Type
参数注入
Affected Vendor
戴尔
Published
2025-10-07
Last Modified
2026-02-24