2 matches found
CVE-2025-36606
Dell Unity (5.5 and earlier) has an OS Command Injection in the svc_nfssupport utility. The authenticated attacker could escape the restricted shell and execute arbitrary root commands via crafted input that bypasses filtering of special characters in the svc_nfssupport command. Impact is arbitra...
CVE-2024-22222
Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability within its svcudoctor utility. An authenticated malicious user with local access could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, wi...