{"cve":{"cve_id":"CVE-2026-26944","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.0054,"epss_percentile":0.41127,"epss_as_of":"2026-06-23","description":"Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2025 release version 8.3.1.0 through 8.3.1.20, LTS2024 release versions 7.13.1.0 through 7.13.1.60 contain a missing authentication for critical function vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command execution with root privileges. Exploitation requires an authenticated user to perform a specific action.","published_at":"2026-04-20T15:51:30.118000Z","last_modified_at":null,"cvss_v3_score":8.8,"cvss_v3_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","cvss_v3_severity":"HIGH","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":["CWE-306"],"nvd_references":["https://www.dell.com/support/kbdoc/en-us/000450699/dsa-2026-060-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:29:30.261368Z"},"effective_severity":"HIGH","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.1","metrics":[{"metric":"AV","name":"Attack Vector","value":"N","value_label":"Network"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"N","value_label":"None"},{"metric":"UI","name":"User Interaction","value":"R","value_label":"Required"},{"metric":"S","name":"Scope","value":"U","value_label":"Unchanged"},{"metric":"C","name":"Confidentiality","value":"H","value_label":"High"},{"metric":"I","name":"Integrity","value":"H","value_label":"High"},{"metric":"A","name":"Availability","value":"H","value_label":"High"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"dell","vendor_name":"Dell","product_slug":"powerprotect-data-domain","product_name":"PowerProtect Data Domain","version_start":"0","version_start_inclusive":true,"version_end":"8.6.1.10, 8.7.0.0 or later","version_end_inclusive":false,"cpe23_uri":"cve5:dell:powerprotect-data-domain:0:8.6.1.10, 8.7.0.0 or later"},{"vendor_slug":"dell","vendor_name":"Dell","product_slug":"powerprotect-data-domain","product_name":"PowerProtect Data Domain","version_start":"0","version_start_inclusive":true,"version_end":"8.3.1.30 or later","version_end_inclusive":false,"cpe23_uri":"cve5:dell:powerprotect-data-domain:0:8.3.1.30 or later"},{"vendor_slug":"dell","vendor_name":"Dell","product_slug":"powerprotect-data-domain","product_name":"PowerProtect Data Domain","version_start":"0","version_start_inclusive":true,"version_end":"7.13.1.70 or later","version_end_inclusive":false,"cpe23_uri":"cve5:dell:powerprotect-data-domain:0:7.13.1.70 or later"},{"vendor_slug":"dell","vendor_name":"Dell","product_slug":"powerprotect-data-domain","product_name":"PowerProtect Data Domain","version_start":"0","version_start_inclusive":true,"version_end":"2.7.9 with DD OS 8.3.1.30","version_end_inclusive":false,"cpe23_uri":"cve5:dell:powerprotect-data-domain:0:2.7.9 with DD OS 8.3.1.30"}],"exploit_refs":[],"news":[],"references":[{"url":"https://www.dell.com/support/kbdoc/en-us/000450699/dsa-2026-060-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2026-04-20T15:51:30.118000Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T17:52:17.441167Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:52:17.441167Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:52:17.441167Z","label":"CVSS score revised","source":"cvelistv5"}]}