CVE-2025-36594 – Dell PowerProtect Data Domain DD OS Authentication Bypass by Spoofing Vulnerability

August 4, 2025

CVE ID : CVE-2025-36594

Published : Aug. 4, 2025, 3:15 p.m. | 10 hours, 5 minutes ago

Description : Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2024 release Versions 7.13.1.0 through 7.13.1.25, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain an Authentication Bypass by Spoofing vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Protection mechanism bypass. Remote unauthenticated user can create account that potentially expose customer info, affect system integrity and availability.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-44955 – RUCKUS Network Director (RND) Hardcoded Password Root Access

Next Article CVE-2025-51536 – AI OpenAtlas Hardcoded Administrator Password Vulnerability

Highlights

CVE-2025-4748 – Erlang OTP Path Traversal Vulnerability

June 16, 2025

CVE ID : CVE-2025-4748

Published : June 16, 2025, 11:15 a.m. | 3 hours, 5 minutes ago

Description : Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability in Erlang OTP (stdlib modules) allows Absolute Path Traversal, File Manipulation. This vulnerability is associated with program files lib/stdlib/src/zip.erl and program routines zip:unzip/1, zip:unzip/2, zip:extract/1, zip:extract/2 unless the memory option is passed.

This issue affects OTP from OTP 17.0 until OTP 28.0.1, OTP 27.3.4.1 and OTP 26.2.5.13, corresponding to stdlib from 2.0 until 7.0.1, 6.2.2.1 and 5.2.3.4.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

I’m grateful The Witcher 4 isn’t following this annoying RPG trend — a key Cyberpunk 2077 and The Witcher 3 policy lives on with the sequel

July 1, 2025

Skype for Business Server SE launches with subscription model shift

July 2, 2025

sherpa-onnx is speech-to-text and text-to-speech software

June 30, 2025

Error’d: You Talkin’ to Me?

The Psychology Of Trust In AI: A Guide To Measuring And Designing For User Confidence

This week in AI updates: OpenAI Codex updates, Claude integration in Xcode 26, and more (September 19, 2025)

Report: The major factors driving employee disengagement in 2025

DistroWatch Weekly, Issue 1140

Distribution Release: DietPi 9.17

Development Release: Zorin OS 18 Beta

Distribution Release: IPFire 2.29 Core 197

@ts-ignore is almost always the worst option

@ts-ignore is almost always the worst option

MutativeJS v1.3.0 is out with massive performance gains

Student Performance Prediction System using Python Machine Learning (ML)

DistroWatch Weekly, Issue 1140

DistroWatch Weekly, Issue 1140

Distribution Release: DietPi 9.17

Hyprland Made Easy: Preconfigured Beautiful Distros

CVE-2025-36594 – Dell PowerProtect Data Domain DD OS Authentication Bypass by Spoofing Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

So, how much will the Xbox Ally cost? Here are some thoughts on the rumors, and what I know so far.

My favorite Xbox and PC controller is a 3rd-party device that trounces Microsoft’s official controller — and it’s now on a big 41% discount thanks to Amazon Prime Day

People are using ChatGPT to generate pictures of their perfect match based on looks — mine just made my brother

Microsoft PC Manager for Windows 11 is now showing Microsoft 365 ads

CVE-2025-4748 – Erlang OTP Path Traversal Vulnerability

I’m grateful The Witcher 4 isn’t following this annoying RPG trend — a key Cyberpunk 2077 and The Witcher 3 policy lives on with the sequel

Skype for Business Server SE launches with subscription model shift

sherpa-onnx is speech-to-text and text-to-speech software

CVE-2025-36594 – Dell PowerProtect Data Domain DD OS Authentication Bypass by Spoofing Vulnerability

Related Posts