← back
CVE-2025-43914

CVE-2025-43914

CVSS 7.5 HIGHEPSS 0.1%CWE-266
Dell PowerProtect Data Domain BoostFS for Linux Ubuntu systems of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2025 release version 8.3.1.0, LTS2024 release versions 7.13.1.0 through 7.13.1.30, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Unauthorized access.
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
Affected products
Dell · PowerProtect Data Domain BoostFS for Linux Ubuntu Feature ReleaseDell · PowerProtect Data Domain BoostFS for Linux Ubuntu LTS2023Dell · PowerProtect Data Domain BoostFS for Linux Ubuntu LTS2024Dell · PowerProtect Data Domain BoostFS for Linux Ubuntu LTS2025

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.dell.com/support/kbdoc/en-us/000376224/dsa-2025-333-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities