CVE-2025-36594 – Dell PowerProtect Data Domain DD OS Authentication Bypass by Spoofing Vulnerability

August 4, 2025

CVE ID : CVE-2025-36594

Published : Aug. 4, 2025, 3:15 p.m. | 10 hours, 5 minutes ago

Description : Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2024 release Versions 7.13.1.0 through 7.13.1.25, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain an Authentication Bypass by Spoofing vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Protection mechanism bypass. Remote unauthenticated user can create account that potentially expose customer info, affect system integrity and availability.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-44955 – RUCKUS Network Director (RND) Hardcoded Password Root Access

Next Article CVE-2025-51536 – AI OpenAtlas Hardcoded Administrator Password Vulnerability

UX Job Interview Helpers

.NET Aspire’s CLI reaches general availability in 9.4 release

15 Essential Skills to Look for When Hiring Node.js Developers for Enterprise Projects (2025-2026)

African training program creates developers with cloud-native skills

CodeSOD: An Annual Report

LastPass can now warn or block logins to shadow SaaS apps – here’s how

Get up to a year of Adobe Creative Cloud access for 40% off

Got 6 hours? This free AI training from Google and Goodwill can boost your resume today

The details of TC39’s last meeting

The details of TC39’s last meeting

Introducing NCM v3: AI-Enhanced Security & Performance for Node.js

Laravel Boost, your AI coding starter kit

Audacity 3.7.5 Fixes More Bugs, Windows on ARM Builds

Audacity 3.7.5 Fixes More Bugs, Windows on ARM Builds

Toot, Toot: Linux Mastodon App Tuba Gets a Huge Update

4 Ways I am Encouraging My 4 Year Old Child to Help Learn Coding and Use Computer

CVE-2025-36594 – Dell PowerProtect Data Domain DD OS Authentication Bypass by Spoofing Vulnerability

CVE-2025-51534 – Austrian Archaeological Institute (AI) OpenAtlas Cross-Site Scripting (XSS)

CVE-2025-51535 – Austrian Archaeological Institute OpenAtlas SQL Injection Vulnerability

Updates to Apple’s On-Device and Server Foundation Language Models

CVE-2025-48886 – Cardano Hydra L1 Event Finality Vulnerability

DanceGRPO: A Unified Framework for Reinforcement Learning in Visual Generation Across Multiple Paradigms and Tasks

CVE-2025-5373 – PHPGurukul Online Birth Certificate System SQL Injection Vulnerability

Tenmon is a FITS and XISF image viewer, converter and indexer

CVE-2025-48827 – vBulletin Unauthenticated API Controller Method Invocation Vulnerability

Apple quietly makes running Linux containers easier on Macs

Boost cold-start recommendations with vLLM on AWS Trainium

CVE-2025-36594 – Dell PowerProtect Data Domain DD OS Authentication Bypass by Spoofing Vulnerability

Related Posts