VYPR
High severity8.8NVD Advisory· Published Dec 14, 2023· Updated Jun 17, 2026

CVE-2023-44286

CVE-2023-44286

Description

Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain a DOM-based Cross-Site Scripting vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to the injection of malicious HTML or JavaScript code to a victim user's DOM environment in the browser. . Exploitation may lead to information disclosure, session theft, or client-side request forgery.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Dell/PowerProtect DDllm-fuzzy2 versions
    <7.13.0.10, <LTS 7.7.5.25, <LTS 7.10.1.15, <6.2.1.110+ 1 more
    • (no CPE)range: <7.13.0.10, <LTS 7.7.5.25, <LTS 7.10.1.15, <6.2.1.110
    • (no CPE)range: Versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110ersions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.