High severity8.8NVD Advisory· Published Dec 14, 2023· Updated Jun 17, 2026
CVE-2023-44286
CVE-2023-44286
Description
Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain a DOM-based Cross-Site Scripting vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to the injection of malicious HTML or JavaScript code to a victim user's DOM environment in the browser. . Exploitation may lead to information disclosure, session theft, or client-side request forgery.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<7.13.0.10, <LTS 7.7.5.25, <LTS 7.10.1.15, <6.2.1.110+ 1 more
- (no CPE)range: <7.13.0.10, <LTS 7.7.5.25, <LTS 7.10.1.15, <6.2.1.110
- (no CPE)range: Versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110ersions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.