Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Command execution.
Metrics
Affected Vendors & Products
References
History
Tue, 08 Jul 2025 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Dell
Dell unity Operating Environment |
|
CPEs | cpe:2.3:a:dell:unity_operating_environment:*:*:*:*:*:*:*:* | |
Vendors & Products |
Dell
Dell unity Operating Environment |
Fri, 28 Mar 2025 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Fri, 28 Mar 2025 02:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Command execution. | |
Weaknesses | CWE-78 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: dell
Published: 2025-03-28T01:45:19.353Z
Updated: 2025-03-29T03:55:41.393Z
Reserved: 2025-01-21T06:04:19.371Z
Link: CVE-2025-24382

Updated: 2025-03-28T13:58:34.355Z

Status : Analyzed
Published: 2025-03-28T02:15:14.217
Modified: 2025-07-08T16:33:10.570
Link: CVE-2025-24382

No data.