CVE-2024-22228
Dell Unity (prep 5.4) contains an OS command injection in the svc_cifssupport utility. An authenticated, local attacker could escape the restricted shell and run arbitrary OS commands with root privileges. Affected software: Dell Unity versions prior to 5.4. Root cause: lack of safeguards to neut...