Incorrect Permission Assignment Vulnerability in Dell PowerProtect Data Domain
CVE-2026-44268

4.4MEDIUM

Key Information:

Vendor

Dell

Vendor
CVE Published:
3 July 2026

What is CVE-2026-44268?

The vulnerability in Dell PowerProtect Data Domain products stems from an incorrect permission assignment, which may allow high-privileged attackers with local access to exploit the system. This flaw could enable unauthorized access to critical resources, posing a significant security risk to affected installations. Users are advised to review their security configurations and apply any available updates to mitigate potential threats.

Affected Version(s)

PowerProtect Data Domain 0 < 8.7.0.0 or later

PowerProtect Data Domain 0 < 8.6.1.20 or later

PowerProtect Data Domain 0 < 8.3.1.40 or later

References

CVSS V3.1

Score:
4.4
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.