Dell

Unity Operating Environment

45 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2025-36607

  • EPSS 0.04%
  • Veröffentlicht 04.08.2025 14:15:32
  • Zuletzt bearbeitet 15.08.2025 16:08:22

Dell Unity, version(s) 5.5 and prior, contain(s) an OS Command Injection Vulnerability in its svc_nas utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating syste...

7.8

CVE-2025-36606

  • EPSS 0.04%
  • Veröffentlicht 04.08.2025 14:15:32
  • Zuletzt bearbeitet 15.08.2025 16:09:03

Dell Unity, version(s) 5.5 and prior, contain(s) an OS Command Injection Vulnerability in its svc_nfssupport utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operatin...

6.1

CVE-2025-36605

  • EPSS 0.12%
  • Veröffentlicht 04.08.2025 14:15:32
  • Zuletzt bearbeitet 15.08.2025 16:10:03

Dell Unity, version(s) 5.5 and prior, contain(s) an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in the CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...

9.8

CVE-2025-36604

  • EPSS 16.19%
  • Veröffentlicht 04.08.2025 14:00:05
  • Zuletzt bearbeitet 03.10.2025 14:15:45

Dell Unity, version(s) 5.5 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability,...

8.8

CVE-2025-24381

  • EPSS 0.11%
  • Veröffentlicht 28.03.2025 02:23:29
  • Zuletzt bearbeitet 08.07.2025 16:32:28

Dell Unity, version(s) 5.4 and prior, contain(s) an URL Redirection to Untrusted Site ('Open Redirect') vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to a targeted application user...

7.8

CVE-2025-24386

  • EPSS 0.03%
  • Veröffentlicht 28.03.2025 02:19:41
  • Zuletzt bearbeitet 08.07.2025 16:32:16

Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, le...

7.8

CVE-2025-24377

  • EPSS 0.03%
  • Veröffentlicht 28.03.2025 02:16:19
  • Zuletzt bearbeitet 08.07.2025 16:32:51

Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, le...

7.8

CVE-2025-24378

  • EPSS 0.03%
  • Veröffentlicht 28.03.2025 02:12:41
  • Zuletzt bearbeitet 08.07.2025 16:32:45

Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, le...

7.8

CVE-2025-24379

  • EPSS 0.03%
  • Veröffentlicht 28.03.2025 02:09:15
  • Zuletzt bearbeitet 08.07.2025 16:32:40

Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, le...

7.8

CVE-2025-24380

  • EPSS 0.03%
  • Veröffentlicht 28.03.2025 02:05:27
  • Zuletzt bearbeitet 08.07.2025 16:32:33

Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, le...