Vulnerabilities

- Dell PowerProtect Data Domain DD OS OS Command Injection CVE-2025-46645

2026-01-09 0 views admin

CVE ID : CVE-2025-46645 Published : Jan. 9, 2026, 5:15 p.m. | 2 hours, 10 minutes ago Description : Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.4.0.0, LTS2025 release version 8.3.1.10, LTS2024 release versions 7.13.1.0 through 7.13.1.40, LTS 2023 release versions 7.10.1.0 through 7.10.1.70, contain an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution. Severity: 6.5 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2025-46645

Severity

HIGH

Published

Jan. 9, 2026

Impact: Command Injection

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2025-46645high

- Dell PowerProtect Data Domain DD OS OS Command Injection CVE-2025-46645

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2026-22689 - Mailpit is vulnerable to Cross-Site WebSocket Hijacking (CSWSH) allowing unauthe

Complete Guide to CVE-2026-22685 - DevToys Path Traversal (“Zip Slip”) Vulnerability in DevToys Extension Installation

Essential Guide: CVE-2026-22611 - AWS SDK for .NET V4 adopted defense in depth enhancement for region parameter value

Update: CVE-2026-22693 - Null Pointer Dereference in SubtableUnicodesCache::create leading to DoS

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting