CVE-2026-46463
MediumCVSS 6.5Summary
Dell PowerProtect Data Domain in multiple versions contains an integer overflow or wraparound vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to denial of service.
Risk Assessment
The risk is that an unauthenticated attacker can remotely cause a system crash, potentially disrupting data protection and backup services in the organization.
Recommendation
It is recommended to immediately update Dell PowerProtect Data Domain to the latest available version that includes a fix for this vulnerability.
Original NVD description (English source)
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an integer overflow or wraparound vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to denial of service.

