PatchSiren cyber security CVE debrief
CVE-2026-46463 Dell CVE debrief
CVE-2026-46463: Dell PowerProtect Data Domain Vulnerability Debrief. Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, and LTS2024 release versions 7.13.1.0 through 7.13.1.70, contain an integer overflow or wraparound vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to denial of service. Organizations should prioritize patching this vulnerability as it has a CVSS score of 6.5 and could lead to significant operational impact if exploited.
- Vendor
- Dell
- Product
- PowerProtect Data Domain
- CVSS
- MEDIUM 6.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-07-03
- Original CVE updated
- 2026-07-08
- Advisory published
- 2026-07-03
- Advisory updated
- 2026-07-08
Who should care
Organizations using Dell PowerProtect Data Domain versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, and LTS2024 release versions 7.13.1.0 through 7.13.1.70 should prioritize patching this vulnerability as it has a CVSS score of 6.5 and could lead to significant operational impact if exploited.
Technical summary
Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70, contain an integer overflow or wraparound vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to denial of service. The vulnerability has a CVSS score of 6.5, indicating medium severity.
Defensive priority
Medium priority due to CVSS score of 6.5 and potential for denial of service.
Recommended defensive actions
- Apply patches or updates provided by Dell to vulnerable systems.
- Restrict remote access to affected systems.
- Monitor systems for unusual activity.
- Perform regular vulnerability assessments and penetration testing.
- Implement compensating controls such as network segmentation and access controls.
- Review and update asset inventory to ensure all affected systems are accounted for.
- Track exceptions and retest remediated assets to ensure vulnerability is fully resolved.
Evidence notes
The CVE record was published on 2026-07-03T14:16:29.660Z and was last modified on 2026-07-08T19:32:28.133Z. The NVD entry is currently Analyzed. Evidence is limited to CVE and NVD information. Defenders should verify affected product deployments and review official advisories for scope, severity, and vendor guidance.
Official resources
-
CVE-2026-46463 CVE record
CVE.org
-
CVE-2026-46463 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Vendor Advisory
AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-03T14:16:29.660Z and has not been modified since then. The NVD entry is currently Analyzed.