CNNVD-202510-902 Information
CNNVD ID
CNNVD-202510-902
Related CVE
- CNNVD Published: 2025-10-07
Description (Chinese)
Dell PowerProtect Data Domain(Dell PowerProtect DD)是美国戴尔(Dell)公司的一套用于数据保护、备份、存储和重复数据消除的硬件设备。 Dell PowerProtect Data Domain存在路径遍历漏洞,该漏洞源于路径名限制不当,可能导致拒绝服务和未经授权的访问。以下版本受到影响:7.7.1.0版本至8.3.0.15版本、LTS2025 8.3.1.0版本、LTS2024 7.13.1.0版本至7.13.1.30版本和LTS 2023 7.10.1.0版本至7.10.1.60版本。
Description (English)
Dell PowerProtec Data Domain (Dell PowerProtec DD) is a set of hardware equipment for data protection, backup, storage and duplicate data elimination from Dell, United States. Dell PowerProtec Data Domain has a loophole in its path, which stems from inappropriate path name limitations that may lead to denial of services and unauthorized access. The following versions were affected: 7.7.1.0 to 8.3.0.15, LTS2025 8.3.1.0, LTS2024 7.13.1.0 to 7.1.13.30 and LTS 2023 7.10.0 to 7.10.1.60.
Hazard Level
High
Vulnerability Type
路径遍历
Affected Vendor
戴尔
Published
2025-10-07
Last Modified
2026-02-24