CVE-2025-46645

🗓️ 09 Jan 2026 16:14:35Reported by dellType

CVE-2025-46645 enables remote command execution via OS command injection on Dell PowerProtect Data Domain.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2025-46645	9 Jan 202618:06	–	circl
CNNVD	Dell PowerProtect Data Domain 操作系统命令注入漏洞	9 Jan 202600:00	–	cnnvd
CNVD	Dell PowerProtect Data Domain OS Command Injection Vulnerability (CNVD-2026-18590)	19 Jan 202600:00	–	cnvd
Cvelist	CVE-2025-46645	9 Jan 202616:14	–	cvelist
EUVD	EUVD-2026-1711	9 Jan 202616:14	–	euvd
NVD	CVE-2025-46645	9 Jan 202617:15	–	nvd
OSV	CVE-2025-46645	9 Jan 202617:15	–	osv
Positive Technologies	PT-2026-1806	9 Jan 202600:00	–	ptsecurity
Vulnrichment	CVE-2025-46645	9 Jan 202616:14	–	vulnrichment

NVD

Vulners

Node

dell data_domain_operating_systemRange7.7.1.0–7.10.1.80

dell data_domain_operating_systemRange7.13.1.0–7.13.1.50

dell data_domain_operating_systemRange8.3.1.0–8.3.1.20

dell data_domain_operating_systemMatch8.4.0.0

[
  {
    "defaultStatus": "unaffected",
    "product": "PowerProtect Data Domain with Data Domain Operating System (DD OS) Feature Release",
    "vendor": "Dell",
    "versions": [
      {
        "lessThan": "8.5.0.0",
        "status": "affected",
        "version": "7.7.1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "PowerProtect Data Domain with Data Domain Operating System (DD OS) LTS2025",
    "vendor": "Dell",
    "versions": [
      {
        "lessThan": "8.3.1.20",
        "status": "affected",
        "version": "8.3.1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "PowerProtect Data Domain with Data Domain Operating System (DD OS) LTS 2024",
    "vendor": "Dell",
    "versions": [
      {
        "lessThan": "7.13.1.50",
        "status": "affected",
        "version": "7.13.1.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "PowerProtect Data Domain with Data Domain Operating System (DD OS) LTS2023",
    "vendor": "Dell",
    "versions": [
      {
        "lessThan": "7.10.1.80",
        "status": "affected",
        "version": "7.10.1.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
dell	www.dell.com/support/kbdoc/en-us/000405813/dsa-2025-415-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities

05 Feb 2026 13:24Current

6.4Medium risk

Vulners AI Score6.4

CVSS 3.16.5 - 7.2

EPSS0.00045

SSVC

CWE-78