520 matches found
CVE-2025-36605
Dell Unity, versions 5.5 and prior, contains an Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in the CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'. An unauthenticated attacker with remote access could...
CVE-2025-36606
Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnfssupport utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...
CVE-2025-36606
Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnfssupport utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...
CVE-2025-36605
Dell Unity, versions 5.5 and prior, contains an Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in the CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'. An unauthenticated attacker with remote access could...
CVE-2025-36605
Dell Unity, versions 5.5 and prior, contains an Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in the CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'. An unauthenticated attacker with remote access could...
CVE-2025-36604
Dell Unity, versions 5.5 and prior, contains an Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command execution...
CVE-2025-36604
Dell Unity, versions 5.5 and prior, contains an Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command execution...
CVE-2025-36607
Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnas utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...
CVE-2025-36607
Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnas utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...
CVE-2025-36606
Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnfssupport utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...
CVE-2025-36607
Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnas utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...
CVE-2025-36607
Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnas utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...
CVE-2025-36607
Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnas utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...
CVE-2025-36607
Dell Unity, versions 5.5 and prior, contain an OS Command Injection in the svc_nas utility. An authenticated attacker could escape the restricted shell and execute arbitrary OS commands with root privileges. Connected sources confirm the affected component and root cause, but do not provide a con...
CVE-2025-36606
Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnfssupport utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...
CVE-2025-36606
Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnfssupport utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...
CVE-2025-36606
Dell Unity, versions 5.5 and prior, contains an OS Command Injection Vulnerability in its svcnfssupport utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root privileges...
CVE-2025-36606
Dell Unity (5.5 and earlier) has an OS Command Injection in the svc_nfssupport utility. The authenticated attacker could escape the restricted shell and execute arbitrary root commands via crafted input that bypasses filtering of special characters in the svc_nfssupport command. Impact is arbitra...
CVE-2025-36605
Dell Unity, versions 5.5 and prior, contains an Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in the CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'. An unauthenticated attacker with remote access could...
CVE-2025-36605
Dell Unity, versions 5.5 and prior, contains an Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in the CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'. An unauthenticated attacker with remote access could...