CVE-2025-43907 – This CVE describes a path traversal vulnerabili... (How to Fix)

Q: What is the severity of CVE-2025-43907?

CVE-2025-43907 has a CVSS score of 6.5 (MEDIUM). This CVE describes a path traversal vulnerability in Dell PowerProtect Data Domain systems where attackers can use '.../...//' sequences to access unauthorized files. Low-privileged remote attackers can exploit this to expose sensitive information. Affected systems include Data Domain OS versions 7.7.1.0 through 8.3.0.15 and specific LTS releases.

📋 TL;DR

This CVE describes a path traversal vulnerability in Dell PowerProtect Data Domain systems where attackers can use '.../...//' sequences to access unauthorized files. Low-privileged remote attackers can exploit this to expose sensitive information. Affected systems include Data Domain OS versions 7.7.1.0 through 8.3.0.15 and specific LTS releases.

💻 Affected Systems

Products:

Dell PowerProtect Data Domain

Versions: DD OS Feature Release 7.7.1.0 through 8.3.0.15, LTS2025 8.3.1.0, LTS2024 7.13.1.0 through 7.13.1.30, LTS2023 7.10.1.0 through 7.10.1.60

Operating Systems: Data Domain Operating System (DD OS)

Default Config Vulnerable: ⚠️ Yes

Notes: All affected versions in default configuration are vulnerable. Requires low-privileged remote access to exploit.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise through escalation to sensitive configuration files, credentials, or backup data exposure

🟠

Likely Case

Unauthorized access to sensitive system files, configuration data, or partial information disclosure

🟢

If Mitigated

Limited to no impact with proper network segmentation and access controls

🌐 Internet-Facing: MEDIUM - Requires attacker to have low-privileged access but could lead to significant information disclosure

🏢 Internal Only: MEDIUM - Internal attackers with low privileges could exploit to gain unauthorized file access

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires low-privileged access and knowledge of path traversal techniques. No public exploit code available at this time.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Apply updates per Dell advisory DSA-2025-333

Vendor Advisory: https://www.dell.com/support/kbdoc/en-us/000376224/dsa-2025-333-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities

Restart Required: No

Instructions:

1. Review Dell advisory DSA-2025-333. 2. Download appropriate patches from Dell Support. 3. Apply updates during maintenance window. 4. Verify patch application using version check.

🔧 Temporary Workarounds

Network Segmentation

all

Restrict network access to Data Domain systems to authorized management networks only

Access Control Hardening

all

Implement strict access controls and limit low-privileged accounts to minimum necessary functions

🧯 If You Can't Patch

Implement strict network segmentation to isolate Data Domain systems from untrusted networks
Enforce principle of least privilege for all user accounts and monitor for suspicious file access patterns

🔍 How to Verify

Check if Vulnerable:

Check DD OS version using 'version' command and compare against affected versions list

Check Version:

version

Verify Fix Applied:

Verify version is updated beyond affected ranges and test path traversal attempts return proper access denied responses

📡 Detection & Monitoring

Log Indicators:

Unusual file access patterns
Multiple failed path traversal attempts
Access to system files by non-admin users

Network Indicators:

Unusual HTTP requests containing '.../...//' patterns
Multiple file access attempts from single source

SIEM Query:

source="data_domain" AND (http_uri="*.../...//*" OR file_access="*/etc/*" OR file_access="*/var/*")

📊 Metadata

CVE ID: CVE-2025-43907

CVSS v3 Score: 6.5 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE: CWE-35

EPSS Score: 0.08% exploit probability (22.5th percentile)

Published: October 7, 2025

Last Updated: October 14, 2025

🔗 References

https://www.dell.com/support/kbdoc/en-us/000376224/dsa-2025-333-security-update-for-dell-powerprotect-data-domain-multiple-vulnerabilities Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-43907, you might also want to check these:

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Data Domain Operating System by Dell

Data Domain Operating System by Dell

Data Domain Operating System by Dell

Data Domain Operating System by Dell

⚠️ Risk & Real-World Impact

Worst Case

Likely Case

If Mitigated

🎯 Exploit Status

🛠️ Fix & Mitigation

✅ Official Fix

Instructions:

🔧 Temporary Workarounds

Network Segmentation

Access Control Hardening

🧯 If You Can't Patch

🔍 How to Verify

Check if Vulnerable:

Check Version:

Verify Fix Applied:

📡 Detection & Monitoring

Log Indicators:

Network Indicators:

SIEM Query:

📊 Metadata

🔗 References

📤 Share & Export

🔗 Related Vulnerabilities