Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an insertion of sensitive information into log file vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to information exposure.
History

Tue, 07 Jul 2026 19:45:00 +0000

Type Values Removed Values Added
Title Sensitive Information Leaked via Log Files in PowerProtect Data Domain

Tue, 07 Jul 2026 03:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Mon, 06 Jul 2026 22:15:00 +0000

Type Values Removed Values Added
Title Sensitive Information Log Disclosure in Dell PowerProtect Data Domain

Mon, 06 Jul 2026 13:30:00 +0000

Type Values Removed Values Added
Title Sensitive Information Log Disclosure in Dell PowerProtect Data Domain

Mon, 06 Jul 2026 04:45:00 +0000

Type Values Removed Values Added
Title Sensitive Data Leakage via Log Files in Dell PowerProtect Data Domain

Sun, 05 Jul 2026 17:15:00 +0000

Type Values Removed Values Added
Title Sensitive Data Leakage via Log Files in Dell PowerProtect Data Domain

Sun, 05 Jul 2026 09:00:00 +0000

Type Values Removed Values Added
Title Sensitive Information Logged to Log Files in Dell PowerProtect Data Domain

Sun, 05 Jul 2026 01:00:00 +0000

Type Values Removed Values Added
Title Sensitive Information Logged to Log Files in Dell PowerProtect Data Domain

Sat, 04 Jul 2026 20:30:00 +0000

Type Values Removed Values Added
Title Sensitive Information Insertion into Log Files

Sat, 04 Jul 2026 09:30:00 +0000

Type Values Removed Values Added
Title Sensitive Information Insertion into Log Files

Sat, 04 Jul 2026 05:00:00 +0000

Type Values Removed Values Added
Title Local Log Injection Exposing Sensitive Information

Fri, 03 Jul 2026 17:30:00 +0000

Type Values Removed Values Added
Title Local Log Injection Exposing Sensitive Information

Fri, 03 Jul 2026 15:30:00 +0000

Type Values Removed Values Added
First Time appeared Dell
Dell powerprotect Data Domain
Vendors & Products Dell
Dell powerprotect Data Domain

Fri, 03 Jul 2026 13:15:00 +0000

Type Values Removed Values Added
Description Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an insertion of sensitive information into log file vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to information exposure.
Weaknesses CWE-532
References
Metrics cvssV3_1

{'score': 5.8, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: dell

Published: 2026-07-03T13:04:26.935Z

Updated: 2026-07-07T02:14:33.621Z

Reserved: 2026-05-14T17:05:39.859Z

Link: CVE-2026-46467

cve-icon Vulnrichment

Updated: 2026-07-07T02:14:04.485Z

cve-icon NVD

No data.

cve-icon Redhat

No data.