CVE-2025-29987

HIGH Year: 2025
CVSS v3 Score
8.8
High
Weakness Type
CWE-1220
View all →

Vulnerability Description

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) versions prior to 8.3.0.15 contain an Insufficient Granularity of Access Control vulnerability. An authenticated user from a trusted remote client could exploit this vulnerability to execute arbitrary commands with root privileges.

Related Vulnerabilities

CVE-2022-2475

HIGH
CVSS:8.8(High)

Haas Controller version 100.20.000.1110 has insufficient granularity of access control when using the "Ethernet Q Commands" service. Any user is able to write macros into registers outside of the auth...

CWE-12202022

CVE-2022-4813

HIGH
CVSS:8.6(High)

Insufficient Granularity of Access Control in GitHub repository usememos/memos prior to 0.9.1.

CWE-12202022

CVE-2022-4801

HIGH
CVSS:8.2(High)

Insufficient Granularity of Access Control in GitHub repository usememos/memos prior to 0.9.1.

CWE-12202022

CVE-2022-1461

HIGH
CVSS:8.1(High)

Non Privilege User can Enable or Disable Registered in GitHub repository openemr/openemr prior to 6.1.0.1.

CWE-12202022