189 matches found
CVE-2026-23861
Dell Unisphere for PowerMax vApp, versions 9.2.4.x, contains an Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to the execution of malicious HTML o...
CVE-2026-23861
CVE-2026-23861 affects Dell Unisphere for PowerMax vApp, 9.2.4.x. It is a Cross-site Scripting vulnerability caused by improper neutralization of input during web page generation. A low-privilege, remote attacker could inject malicious HTML/JavaScript into the victim’s browser within the vulnerab...
CVE-2026-23861
Dell Unisphere for PowerMax vApp, versions 9.2.4.x, contains an Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to the execution of malicious HTML o...
CVE-2026-23861
Dell Unisphere for PowerMax vApp, versions 9.2.4.x, contains an Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to the execution of malicious HTML o...
Dell Unisphere for PowerMax 跨站脚本漏洞
Dell Unisphere for PowerMax is a graphical management platform developed by the American company Dell. The version 9.2.4.x of Dell Unisphere for PowerMax contains a cross-site scripting vulnerability, which arises from improper input handling and may lead to cross-site scripting attacks...
PT-2026-20353
Name of the Vulnerable Software and Affected Versions Dell Unisphere for PowerMax versions 9.2.4.x Description Dell Unisphere for PowerMax versions 9.2.4.x contain an Improper Neutralization of Input During Web Page Generation issue, also known as Cross-site Scripting. A low privileged attacker...
PT-2026-20313
Name of the Vulnerable Software and Affected Versions Dell Unisphere for PowerMax vApp versions 9.2.4.x Description The software contains an Improper Neutralization of Input During Web Page Generation issue, also known as Cross-site Scripting. A low privileged attacker with remote access could...
Dell Unisphere for PowerMax vApp 跨站脚本漏洞
Dell Unisphere for PowerMax vApp is a virtualization management solution provided by the American company Dell. Version 9.2.4.x of Dell Unisphere for PowerMax vApp contains a cross-site scripting vulnerability. This vulnerability arises from improper input handling and may lead to cross-site...
CVE-2025-36588
Dell Unisphere for PowerMax, versions 10.2.0.x, contains an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution...
CVE-2025-36588
Dell Unisphere for PowerMax, versions 10.2.0.x, contains an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution...
CVE-2025-36588
Dell Unisphere for PowerMax, versions 10.2.0.x, contains an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution...
CVE-2025-36588
Dell Unisphere for PowerMax, versions 10.2.0.x, contains an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution...
CVE-2025-36588
Dell Unisphere for PowerMax, versions 10.2.0.x, contains an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution...
CVE-2025-36588
CVE-2025-36588 affects Dell Unisphere for PowerMax, 10.2.0.x, due to an Improper Neutralization of Special Elements used in an SQL Command (SQL Injection). A low-privileged, remote attacker could potentially achieve command execution. Root cause: improper neutralization in SQL commands. CVSS 3.1 ...
CVE-2025-36588
Dell Unisphere for PowerMax, versions 10.2.0.x, contains an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution...
PT-2026-3949
Name of the Vulnerable Software and Affected Versions Dell Unisphere for PowerMax versions 10.2.0.x Description Dell Unisphere for PowerMax versions 10.2.0.x contain an Improper Neutralization of Special Elements used in an SQL Command vulnerability, also known as 'SQL Injection'. A low privilege...
Dell Unisphere for PowerMax SQL Injection Vulnerability
Dell Unisphere for PowerMax is a graphical management platform developed by the American company Dell. The version 10.2.0.x of Dell Unisphere for PowerMax has a SQL injection vulnerability. This vulnerability arises from improper neutralization of special elements, which may lead to SQL injection...
CVE-2025-36589
Dell Unisphere for PowerMax, versions 9.2.4.x, contains an Improper Restriction of XML External Entity Reference vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to unauthorized access to data and resources outside of the intended...
CVE-2025-36589
Dell Unisphere for PowerMax, versions 9.2.4.x, contains an Improper Restriction of XML External Entity Reference vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to unauthorized access to data and resources outside of the intended...
CVE-2025-36589
Dell Unisphere for PowerMax, versions 9.2.4.x, contains an Improper Restriction of XML External Entity Reference vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to unauthorized access to data and resources outside of the intended...