Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Command execution.
Metrics
Affected Vendors & Products
References
History
Tue, 08 Jul 2025 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Dell
Dell unity Operating Environment |
|
CPEs | cpe:2.3:a:dell:unity_operating_environment:*:*:*:*:*:*:*:* | |
Vendors & Products |
Dell
Dell unity Operating Environment |
Fri, 28 Mar 2025 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Fri, 28 Mar 2025 02:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Command execution. | |
Weaknesses | CWE-78 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: dell
Published: 2025-03-28T01:52:23.226Z
Updated: 2025-03-29T03:55:42.823Z
Reserved: 2024-10-17T05:03:48.988Z
Link: CVE-2024-49601

Updated: 2025-03-28T14:29:03.305Z

Status : Analyzed
Published: 2025-03-28T03:15:16.650
Modified: 2025-07-08T16:33:01.010
Link: CVE-2024-49601

No data.