189 matches found
CVE-2025-36595
Dell Unisphere for PowerMax vApp, versions 9.2.4.x, contains an Improper Neutralization of Directives in Statically Saved Code 'Static Code Injection' vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Code execution...
CVE-2025-36595
Dell Unisphere for PowerMax vApp 9.2.4.x is affected by a Static Code Injection vulnerability (CVE-2025-36595). A high-privileged attacker with remote access could potentially achieve code execution via the vulnerability. The documented attack surface indicates network access is required with low...
Dell Unisphere 安全漏洞
Dell Unisphere is a unified storage management platform from Dell. A static code injection vulnerability exists in Dell Unisphere for PowerMax vApp, which arises from failure to properly neutralize instructions in static saved code. An attacker could exploit this vulnerability to execute arbitrar...
PT-2025-27150 · Dell · Dell Unisphere For Powermax Vapp
Name of the Vulnerable Software and Affected Versions: Dell Unisphere for PowerMax vApp version 9.2.4.x Description: The issue is related to an Improper Neutralization of Directives in Statically Saved Code, also known as 'Static Code Injection'. This could allow a high-privileged attacker with...
The vulnerability of the data processing application Dell Unisphere for PowerMax arises from the lack of measures to neutralize special elements in the LDAP request, allowing an attacker to execute arbitrary code.
The vulnerability of the Dell Unisphere for PowerMax data processing application is related to the failure to take measures to neutralize special elements in the LDAP request. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
CVE-2025-27686
Dell Unisphere for PowerMax, versions prior to 10.2.0.9 and PowerMax versions prior to PowerMax 9.2.4.15, contain an Improper Neutralization of Special Elements used in an LDAP Query 'LDAP Injection' vulnerability. A high privileged attacker with remote access could potentially exploit this...
CVE-2025-27686
Dell Unisphere for PowerMax, versions prior to 10.2.0.9 and PowerMax versions prior to PowerMax 9.2.4.15, contain an Improper Neutralization of Special Elements used in an LDAP Query 'LDAP Injection' vulnerability. A high privileged attacker with remote access could potentially exploit this...
CVE-2025-27686
Dell Unisphere for PowerMax, versions prior to 10.2.0.9 and PowerMax versions prior to PowerMax 9.2.4.15, contain an Improper Neutralization of Special Elements used in an LDAP Query 'LDAP Injection' vulnerability. A high privileged attacker with remote access could potentially exploit this...
CVE-2025-27686
CVE-2025-27686 affects Dell Unisphere for PowerMax prior to 10.2.0.9 and PowerMax prior to 9.2.4.15. The issue is an LDAP Injection caused by improper neutralization of special elements in LDAP queries, enabling a high-privilege attacker with remote access to trigger script injection. Exploitatio...
CVE-2025-27686
Dell Unisphere for PowerMax, versions prior to 10.2.0.9 and PowerMax versions prior to PowerMax 9.2.4.15, contain an Improper Neutralization of Special Elements used in an LDAP Query 'LDAP Injection' vulnerability. A high privileged attacker with remote access could potentially exploit this...
Dell Unisphere和Dell PowerMax 注入漏洞
Dell Unisphere and Dell PowerMax are both products of Dell Inc.Dell Unisphere is a web-based management platform provided by Dell EMC for its storage systems, such as the Dell EMC Unity series.Dell PowerMax is an enterprise-class all-flash storage array. An injection vulnerability exists in Dell...
PT-2025-15228 · Dell · Dell Emc Unisphere For Powermax +1
Name of the Vulnerable Software and Affected Versions: Dell Unisphere for PowerMax versions prior to 10.2.0.9 PowerMax versions prior to 9.2.4.15 Description: The issue is related to an Improper Neutralization of Special Elements used in an LDAP Query, also known as 'LDAP Injection'. A high...
The vulnerability of the Dell vApp Manager software, which manages data storage devices like Dell PowerMax EEM, and the Dell Unisphere for PowerMax Virtual Appliance and Solutions Enabler Virtual Appliance, allows a malicious individual to execute arbitrary commands.
The vulnerability of the Dell vApp Manager software, which manages data storage of Dell PowerMax EEM, and the Dell Unisphere for PowerMax Virtual Appliance and Solutions Enabler Virtual Appliance, exists due to the failure to address the special elements used in the operating system’s command set...
CVE-2021-21548
Dell EMC Unisphere for PowerMax versions before 9.1.0.27, Dell EMC Unisphere for PowerMax Virtual Appliance versions before 9.1.0.27, and PowerMax OS Release 5978 contain an improper certificate validation vulnerability. An unauthenticated remote attacker may potentially exploit this vulnerabilit...
CVE-2021-21548
Dell EMC Unisphere for PowerMax versions before 9.1.0.27, Dell EMC Unisphere for PowerMax Virtual Appliance versions before 9.1.0.27, and PowerMax OS Release 5978 contain an improper certificate validation vulnerability. An unauthenticated remote attacker may potentially exploit this vulnerabilit...
Input validation
Dell EMC Unisphere for PowerMax versions before 9.1.0.27, Dell EMC Unisphere for PowerMax Virtual Appliance versions before 9.1.0.27, and PowerMax OS Release 5978 contain an improper certificate validation vulnerability. An unauthenticated remote attacker may potentially exploit this vulnerabilit...
CVE-2021-21548
Dell EMC Unisphere for PowerMax versions before 9.1.0.27, Dell EMC Unisphere for PowerMax Virtual Appliance versions before 9.1.0.27, and PowerMax OS Release 5978 contain an improper certificate validation vulnerability. An unauthenticated remote attacker may potentially exploit this vulnerabilit...
CVE-2021-21548
CVE-2021-21548 affects Dell EMC Unisphere for PowerMax family: PowerMax OS Release 5978, and Unisphere for PowerMax/Virtual Appliance releases prior to 9.1.0.27. The flaw is improper certificate validation in TLS, allowing an unauthenticated remote attacker to mount a man-in-the-middle attack by ...
CVE-2021-21548
Dell EMC Unisphere for PowerMax versions before 9.1.0.27, Dell EMC Unisphere for PowerMax Virtual Appliance versions before 9.1.0.27, and PowerMax OS Release 5978 contain an improper certificate validation vulnerability. An unauthenticated remote attacker may potentially exploit this vulnerabilit...
CVE-2022-34397
Dell Unisphere for PowerMax vApp, VASA Provider vApp, and Solution Enabler vApp version 10.0.0.5 and below contains an authorization bypass vulnerability, allowing users to perform actions in which they are not authorized...