CVE-2026-44268
Dell PowerProtect Data Domain Incorrect Permission Assignment
Description
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an incorrect permission Assignment for critical resource vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to unauthorized access.
INFO
Published Date :
July 3, 2026, 12:15 p.m.
Last Modified :
July 3, 2026, 12:15 p.m.
Remotely Exploit :
No
Source :
dell
CVSS Scores
| Score | Version | Severity | Vector | Exploitability Score | Impact Score | Source |
|---|---|---|---|---|---|---|
| CVSS 3.1 | MEDIUM | c550e75a-17ff-4988-97f0-544cde3820fe |
Solution
- Update Dell PowerProtect Data Domain to the latest secure version.
- Verify resource permission assignments for critical system components.
- Restrict local access to highly privileged users only.
- Regularly audit access logs for suspicious activity.
We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).
Results are limited to the first 15 repositories due to potential performance issues.
The following list is the news that have been mention
CVE-2026-44268 vulnerability anywhere in the article.