OS Command Injection Vulnerability in Dell PowerProtect Data Domain
CVE-2026-49814
7.2HIGH
What is CVE-2026-49814?
The Dell PowerProtect Data Domain products, ranging from version 7.7.1.0 through 8.7, contain a vulnerability due to improper neutralization of special elements used in an OS command. This flaw may allow an attacker with high privileges and remote access to execute arbitrary commands, potentially compromising the integrity and confidentiality of the system.
Affected Version(s)
PowerProtect Data Domain 0 < 8.8.0.0 or later
PowerProtect Data Domain 0 < 8.6.1.20 or later
PowerProtect Data Domain 0 < 8.3.1.40 or later