Primary

Context

Dell SmartFabric OS10 Command Injection Vulnerability Allowing Code Execution

Vulnerability

Patched

A command injection vulnerability has been identified in Dell SmartFabric OS10 Software versions 10.5.4.x, 10.5.5.x, 10.5.6.x, and 10.6.0.x. This vulnerability arises from improper neutralization of special elements used in commands, allowing a low-privileged attacker with local access to execute commands on the affected system.

Impact

Exploitation of this vulnerability could lead to unauthorized command execution on the affected system.

Remediation

Users can upgrade to Dell SmartFabric OS10 version 10.6.0.2 to address this vulnerability. Instructions for downloading this version are available on the Dell SmartFabric OS10 downloads page.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

10.0

exploitability

3.5

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

10.0

exploitability

3.5

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell SmartFabric OS10 Command Injection Vulnerability Allowing Code Execution

Vulnerability

Impact

Remediation

Affected Products

Dell SmartFabric OS10

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating