Path Traversal Vulnerability in Dell PowerProtect Data Domain
CVE-2026-53480

2.7LOW

Key Information:

Vendor

Dell

Vendor
CVE Published:
8 July 2026

What is CVE-2026-53480?

Dell PowerProtect Data Domain products, across several specified versions, are susceptible to a path traversal vulnerability. This flaw allows an attacker with high privileges and remote access to manipulate file paths improperly. If exploited, it could facilitate unauthorized file modifications, posing significant risks to data integrity and security. Users are strongly advised to upgrade to the latest versions to mitigate this risk.

Affected Version(s)

PowerProtect Data Domain 0 < 8.8.0.0 or later

PowerProtect Data Domain 0 < 8.6.1.20 or later

PowerProtect Data Domain 0 < 8.3.1.40 or later

References

CVSS V3.1

Score:
2.7
Severity:
LOW
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Dell would like to thank Ahmed Y. Elmogy for reporting these issues.
.