CVE-2023-44278: Path Traversal

First published: Thu Dec 14 2023(Updated: )

Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain a path traversal vulnerability. A local high privileged attacker could potentially exploit this vulnerability, to gain unauthorized read and write access to the OS files stored on the server filesystem, with the privileges of the running application.

Credit: security_alert@emc.com

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/type
• agent/event
• agent/softwarecombine
• agent/last-modified-date
• agent/first-publish-date
• collector/nvd-api
• source/NVD
• agent/software-canonical-lookup
• agent/severity
• agent/weakness
• agent/references
• agent/author
• agent/tags
• agent/description
• collector/mitre-cve
• source/MITRE
• vendor/dell
• canonical/dell powerprotect data protection
• canonical/dell dp4400
• canonical/dell dp5900
• canonical/dell apex protection storage
• version/dell apex protection storage/7.0
• canonical/dell powerprotect data domain
• version/dell powerprotect data domain/7.0
• canonical/dell powerprotect data domain management center
• version/dell powerprotect data domain management center/7.0
• canonical/dell emc data domain os
• version/dell emc data domain os/7.0
• version/dell emc data domain os/7.7
• version/dell emc data domain os/7.10
• version/dell powerprotect data domain management center/7.7
• version/dell powerprotect data domain management center/7.10
• canonical/dell dd3300
• canonical/dell dd6400
• canonical/dell dd6900
• canonical/dell dd9400
• canonical/dell dd9900