VYPR

UnityXT

by Dell

CVEs (63)

  • CVE-2025-22398CriMar 28, 2025
    risk 0.64cvss 9.8epss 0.02

    Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command…

  • CVE-2025-24383CriMar 28, 2025
    risk 0.59cvss 9.1epss 0.01

    Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability to delete arbitrary files.…

  • CVE-2025-24381HigMar 28, 2025
    risk 0.57cvss 8.8epss 0.01

    Dell Unity, version(s) 5.4 and prior, contain(s) an URL Redirection to Untrusted Site ('Open Redirect') vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to a targeted application user being redirected to…

  • CVE-2023-43082HigNov 22, 2023
    risk 0.56cvss 8.6epss 0.00

    Dell Unity prior to 5.3 contains a 'man in the middle' vulnerability in the vmadapter component. If a customer has a certificate signed by a third-party public Certificate Authority, the vCenter CA could be spoofed by an attacker who can obtain a CA-signed certificate.

  • CVE-2022-29084HigJun 2, 2022
    risk 0.53cvss 8.1epss 0.02

    Dell Unity, Dell UnityVSA, and Dell Unity XT versions before 5.2.0.0.5.173 do not restrict excessive authentication attempts in Unisphere GUI. A remote unauthenticated attacker may potentially exploit this vulnerability to brute-force passwords and gain access to the system as…

  • CVE-2025-36604HigAug 4, 2025
    risk 0.52cvss 7.3epss 0.61

    Dell Unity, version(s) 5.5 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command…

  • CVE-2025-46423HigOct 30, 2025
    risk 0.51cvss 7.8epss 0.01

    Dell Unity, version(s) 5.5 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability to execute arbitrary commands…

  • CVE-2025-46422HigOct 30, 2025
    risk 0.51cvss 7.8epss 0.01

    Dell Unity, version(s) 5.5 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability to execute arbitrary commands…

  • CVE-2025-43942HigOct 30, 2025
    risk 0.51cvss 7.8epss 0.01

    Dell Unity, version(s) 5.5 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution…

  • CVE-2025-43940HigOct 30, 2025
    risk 0.51cvss 7.8epss 0.01

    Dell Unity, version(s) 5.5 and Prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution…

  • CVE-2025-43939HigOct 30, 2025
    risk 0.51cvss 7.8epss 0.01

    Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution…

  • CVE-2025-36607HigAug 4, 2025
    risk 0.51cvss 7.8epss 0.00

    Dell Unity, version(s) 5.5 and prior, contain(s) an OS Command Injection Vulnerability in its svc_nas utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root…

  • CVE-2025-36606HigAug 4, 2025
    risk 0.51cvss 7.8epss 0.00

    Dell Unity, version(s) 5.5 and prior, contain(s) an OS Command Injection Vulnerability in its svc_nfssupport utility. An authenticated attacker could potentially exploit this vulnerability, escaping the restricted shell and execute arbitrary operating system commands with root…

  • CVE-2025-24386HigMar 28, 2025
    risk 0.51cvss 7.8epss 0.01

    Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution…

  • CVE-2025-24385HigMar 28, 2025
    risk 0.51cvss 7.8epss 0.01

    Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution and…

  • CVE-2025-24380HigMar 28, 2025
    risk 0.51cvss 7.8epss 0.01

    Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution…

  • CVE-2025-24379HigMar 28, 2025
    risk 0.51cvss 7.8epss 0.01

    Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution…

  • CVE-2025-24378HigMar 28, 2025
    risk 0.51cvss 7.8epss 0.01

    Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution…

  • CVE-2025-24377HigMar 28, 2025
    risk 0.51cvss 7.8epss 0.01

    Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution and…

  • CVE-2025-23383HigMar 28, 2025
    risk 0.51cvss 7.8epss 0.01

    Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution…

Page 1 of 4