Dell PowerProtect Data Domain, versions 8.5 through 8.6 contain an improper input validation vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command execution with root privileges.
Credits
Dell would like to thank brocked200 (Nguyen Quoc Khanh) for reporting these issues.
