CVE-2025-29987

8.8

Critical

CVE-2025-29987

3 Apr 2025

security_alert@emc.com

Awaiting Analysis

Description

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) versions prior to 8.3.0.15 contain an Insufficient Granularity of Access Control vulnerability. An authenticated user from a trusted remote client could exploit this vulnerability to execute arbitrary commands with root privileges.

Exploits

No known exploits found for this CVE.

Search Exploit-DB

References

security_alert@emc.com

https://www.dell.com/support/kbdoc/en-us/000300899/dsa-2025-139-dell-technologies-powerprotect-data-domain-security-update-for-a-security-vulnerability