Dell PowerProtect DD: Less Trusted Source Use Vulnerability (v7.7.1-8.7, LTS2024-2026)
CVE-2026-46466 Published on July 3, 2026
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an use of less trusted source vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to information tampering.
Vulnerability Analysis
CVE-2026-46466 is exploitable with network access, and requires user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality, with no impact on integrity, and no impact on availability.
Weakness Type
Use of Less Trusted Source
The software has two different sources of the same data or information, but it uses the source that has less support for verification, is less trusted, or is less resistant to attack.
Affected Versions
Dell PowerProtect Data Domain:- Before 8.8.0.0 or later is affected.
- Before 8.6.1.20 or later is affected.
- Before 8.3.1.40 or later is affected.
- Before 7.13.1.80 or later is affected.