CVE-2025-22475

Summary

Dell PowerProtect DD, versions prior to DDOS 8.3.0.0, 7.10.1.50, and 7.13.1.10 contains a use of a Cryptographic Primitive with a Risky Implementation vulnerability. A remote attacker could potentially exploit this vulnerability, leading to Information tampering.

Affected Software

VendorProductVersion RangeStatus
DellPowerProtect DD7.7.1.0 <= 8.1.0.10affected
DellPowerProtect DD7.13.1.0 <= 7.13.1.10affected
DellPowerProtect DD7.10.1.0 <= 7.10.1.40affected

Weaknesses

  • CWE-1240: CWE-1240: Use of a Cryptographic Primitive with a Risky Implementation

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References