CVE-2025-43914

🗓️ 07 Oct 2025 17:43:48Reported by dellType

Low privilege local attacker can exploit incorrect privilege assignment in PowerProtect Data Domain BoostFS on Ubuntu, causing unauthorized access.

Reporter	Title	Published	Views	Family All 7
Circl	CVE-2025-43914	7 Oct 202518:43	–	circl
CNNVD	Dell PowerProtect Data Domain 安全漏洞	7 Oct 202500:00	–	cnnvd
Cvelist	CVE-2025-43914	7 Oct 202517:43	–	cvelist
EUVD	EUVD-2025-32729	7 Oct 202517:43	–	euvd
NVD	CVE-2025-43914	7 Oct 202518:16	–	nvd
Positive Technologies	PT-2025-41141	7 Oct 202500:00	–	ptsecurity
Vulnrichment	CVE-2025-43914	7 Oct 202517:43	–	vulnrichment

NVD

Vulners

Node

dell data_domain_operating_systemRange7.7.1.0–7.10.1.70

dell data_domain_operating_systemRange7.13.1.0–7.13.1.40

dell data_domain_operating_systemRange8.0.0.0–8.3.0.15

dell data_domain_operating_systemRange8.3.1.0–8.3.1.10

[
  {
    "defaultStatus": "unaffected",
    "product": "PowerProtect Data Domain BoostFS for Linux Ubuntu Feature Release",
    "vendor": "Dell",
    "versions": [
      {
        "lessThan": "8.4.0.0",
        "status": "affected",
        "version": "7.7.1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "PowerProtect Data Domain BoostFS for Linux Ubuntu LTS2025",
    "vendor": "Dell",
    "versions": [
      {
        "lessThan": "8.3.1.10",
        "status": "affected",
        "version": "8.3.1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "PowerProtect Data Domain BoostFS for Linux Ubuntu LTS2024",
    "vendor": "Dell",
    "versions": [
      {
        "lessThan": "7.13.1.40",
        "status": "affected",
        "version": "7.13.1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "PowerProtect Data Domain BoostFS for Linux Ubuntu LTS2023",
    "vendor": "Dell",
    "versions": [
      {
        "lessThan": "7.10.1.70",
        "status": "affected",
        "version": "7.10.1.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
dell	www.dell.com/support/kbdoc/en-us/000376224/dsa-2025-333-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities

12 Feb 2026 17:14Current

6Medium risk

Vulners AI Score6

CVSS 3.17.5 - 7.8

EPSS0.00015

SSVC

CWE-266