CVE-2026-23861

CVE-2026-23861 affects Dell Unisphere for PowerMax vApp, 9.2.4.x. It is a Cross-site Scripting vulnerability caused by improper neutralization of input during web page generation. A low-privilege, remote attacker could inject malicious HTML/JavaScript into the victim’s browser within the vulnerab...

EUVD-2022-48025

Malicious code in bioql PyPI...

Dell Unisphere for PowerMax vApp Static Code Injection Vulnerability

Dell Unisphere is a unified storage management platform from Dell. A static code injection vulnerability exists in Dell Unisphere for PowerMax vApp, which arises from failure to properly neutralize instructions in static saved code. An attacker could exploit this vulnerability to execute arbitrar...

CVE-2025-36595

Dell Unisphere for PowerMax vApp, versions 9.2.4.x, contains an Improper Neutralization of Directives in Statically Saved Code 'Static Code Injection' vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Code execution...

PT-2025-27150 · Dell · Dell Unisphere For Powermax Vapp

Name of the Vulnerable Software and Affected Versions: Dell Unisphere for PowerMax vApp version 9.2.4.x Description: The issue is related to an Improper Neutralization of Directives in Statically Saved Code, also known as 'Static Code Injection'. This could allow a high-privileged attacker with...