PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-46463 Dell CVE debrief

CVE-2026-46463: Dell PowerProtect Data Domain Vulnerability Debrief. Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, and LTS2024 release versions 7.13.1.0 through 7.13.1.70, contain an integer overflow or wraparound vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to denial of service. Organizations should prioritize patching this vulnerability as it has a CVSS score of 6.5 and could lead to significant operational impact if exploited.

Vendor
Dell
Product
PowerProtect Data Domain
CVSS
MEDIUM 6.5
CISA KEV
Not listed in stored evidence
Original CVE published
2026-07-03
Original CVE updated
2026-07-08
Advisory published
2026-07-03
Advisory updated
2026-07-08

Who should care

Organizations using Dell PowerProtect Data Domain versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, and LTS2024 release versions 7.13.1.0 through 7.13.1.70 should prioritize patching this vulnerability as it has a CVSS score of 6.5 and could lead to significant operational impact if exploited.

Technical summary

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70, contain an integer overflow or wraparound vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to denial of service. The vulnerability has a CVSS score of 6.5, indicating medium severity.

Defensive priority

Medium priority due to CVSS score of 6.5 and potential for denial of service.

Recommended defensive actions

  • Apply patches or updates provided by Dell to vulnerable systems.
  • Restrict remote access to affected systems.
  • Monitor systems for unusual activity.
  • Perform regular vulnerability assessments and penetration testing.
  • Implement compensating controls such as network segmentation and access controls.
  • Review and update asset inventory to ensure all affected systems are accounted for.
  • Track exceptions and retest remediated assets to ensure vulnerability is fully resolved.

Evidence notes

The CVE record was published on 2026-07-03T14:16:29.660Z and was last modified on 2026-07-08T19:32:28.133Z. The NVD entry is currently Analyzed. Evidence is limited to CVE and NVD information. Defenders should verify affected product deployments and review official advisories for scope, severity, and vendor guidance.

Official resources

AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-03T14:16:29.660Z and has not been modified since then. The NVD entry is currently Analyzed.