Security updates: Numerous gaps jeopardize backup appliances from Dell
Several security vulnerabilities in Dell's Data Domain Operating System make backup appliances of the PowerProtect series vulnerable to attack.
A finger presses an update button.
(Image: Photon photo/Shutterstock.com)
Admins who manage backups with Dell's PowerProtect should install the latest versions of the Data Domain Operating System (DD OS) for security reasons. If this is not done, attackers can completely compromise systems.
Security patches available
Videos by heise
Dell lists the vulnerable components such as Bind, OpenSSL and Pythonin a warning message. If attackers successfully exploit the vulnerabilities, they can cause DoS states (CVE-2024-5535"critical") or even execute malicious code (CVE-2024-6345"high"), among other things.
The developers state that they have resolved the security issues in DD-OS versions 7.10.1.50, 7.13.1.20 and 8.3.0.0. So far there have been no reports of attacks. However, admins should not hesitate too long.
(des)
