Lucene search
K

520 matches found

redhatcve
redhatcve
added 2025/08/06 2:31 p.m.5 views

CVE-2025-36605

Dell Unity, versions 5.5 and prior, contains an Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in the CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'. An unauthenticated attacker with remote access could...

6.1CVSS6.5AI score0.00239EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/08/06 2:31 p.m.11 views

CVE-2025-36606

Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnfssupport utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...

7.8CVSS7.5AI score0.00464EPSS
Exploits0References1
osv
osv
added 2025/08/04 2:15 p.m.7 views

CVE-2025-36606

Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnfssupport utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...

7.8CVSS6AI score0.00464EPSS
Exploits0References1
osv
osv
added 2025/08/04 2:15 p.m.3 views

CVE-2025-36605

Dell Unity, versions 5.5 and prior, contains an Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in the CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'. An unauthenticated attacker with remote access could...

6.1CVSS6AI score0.00239EPSS
Exploits0References1
nvd
nvd
added 2025/08/04 2:15 p.m.5 views

CVE-2025-36605

Dell Unity, versions 5.5 and prior, contains an Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in the CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'. An unauthenticated attacker with remote access could...

6.1CVSS0.00239EPSS
Exploits0References1
osv
osv
added 2025/08/04 2:15 p.m.4 views

CVE-2025-36604

Dell Unity, versions 5.5 and prior, contains an Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command execution...

9.8CVSS5.9AI score0.61125EPSS
Exploits1References3
nvd
nvd
added 2025/08/04 2:15 p.m.10 views

CVE-2025-36604

Dell Unity, versions 5.5 and prior, contains an Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command execution...

9.8CVSS0.61125EPSS
Exploits1References3
osv
osv
added 2025/08/04 2:15 p.m.4 views

CVE-2025-36607

Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnas utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...

7.8CVSS6AI score0.00474EPSS
Exploits0References1
nvd
nvd
added 2025/08/04 2:15 p.m.6 views

CVE-2025-36607

Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnas utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...

7.8CVSS0.00474EPSS
Exploits0References1
nvd
nvd
added 2025/08/04 2:15 p.m.15 views

CVE-2025-36606

Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnfssupport utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...

7.8CVSS0.00464EPSS
Exploits0References1
cvelist
cvelist
added 2025/08/04 2:12 p.m.8 views

CVE-2025-36607

Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnas utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...

7.8CVSS0.00474EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/08/04 2:12 p.m.3 views

CVE-2025-36607

Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnas utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...

7.8CVSS8.2AI score0.00474EPSS
Exploits0References1
attackerkb
attackerkb
added 2025/08/04 2:12 p.m.3 views

CVE-2025-36607

Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnas utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...

7.8CVSS6AI score0.00474EPSS
Exploits0References2
cve
cve
added 2025/08/04 2:12 p.m.20 views

CVE-2025-36607

Dell Unity, versions 5.5 and prior, contain an OS Command Injection in the svc_nas utility. An authenticated attacker could escape the restricted shell and execute arbitrary OS commands with root privileges. Connected sources confirm the affected component and root cause, but do not provide a con...

7.8CVSS8.2AI score0.00474EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2025/08/04 2:9 p.m.9 views

CVE-2025-36606

Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnfssupport utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...

7.8CVSS0.00464EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/08/04 2:9 p.m.4 views

CVE-2025-36606

Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnfssupport utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...

7.8CVSS8.2AI score0.00464EPSS
Exploits0References1
attackerkb
attackerkb
added 2025/08/04 2:9 p.m.2 views

CVE-2025-36606

Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnfssupport utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...

7.8CVSS6AI score0.00464EPSS
Exploits0References2
cve
cve
added 2025/08/04 2:9 p.m.29 views

CVE-2025-36606

Dell Unity (5.5 and earlier) has an OS Command Injection in the svc_nfssupport utility. The authenticated attacker could escape the restricted shell and execute arbitrary root commands via crafted input that bypasses filtering of special characters in the svc_nfssupport command. Impact is arbitra...

7.8CVSS8.2AI score0.00464EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2025/08/04 2:4 p.m.6 views

CVE-2025-36605

Dell Unity, versions 5.5 and prior, contains an Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in the CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'. An unauthenticated attacker with remote access could...

6.1CVSS0.00239EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/08/04 2:4 p.m.3 views

CVE-2025-36605

Dell Unity, versions 5.5 and prior, contains an Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in the CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'. An unauthenticated attacker with remote access could...

6.1CVSS7.2AI score0.00239EPSS
Exploits0References1
Rows per page
Query Builder