Path Traversal Vulnerability in Dell PowerProtect Data Domain Products
CVE-2026-41124
2.3LOW
What is CVE-2026-41124?
An improper limitation of a pathname to a restricted directory vulnerability exists in Dell PowerProtect Data Domain products. This flaw allows a high privileged attacker with local access to exploit the system, potentially leading to the exposure of sensitive information. The vulnerability affects multiple versions of the product, making it critical for users to implement security measures and updates to safeguard their data.
Affected Version(s)
PowerProtect Data Domain 0 < 8.8.0.0 or later
PowerProtect Data Domain 0 < 8.6.1.20 or later
PowerProtect Data Domain 0 < 8.3.1.40 or later