Primary

Context

Dell SmartFabric OS10 Command Injection Vulnerability Allowing Privilege Escalation

Vulnerability

Patched

A command injection vulnerability has been identified in Dell SmartFabric OS10 Software versions 10.5.4.x, 10.5.5.x, 10.5.6.x, and 10.6.0.x. This vulnerability arises from improper neutralization of special elements used in commands, allowing a low-privileged attacker with local access to execute commands with elevated privileges.

Impact

Exploitation of this vulnerability could lead to unauthorized command execution with elevated privileges on the affected system.

Remediation

Users can upgrade to Dell SmartFabric OS10 version 10.6.0.2 to address this vulnerability. Instructions for downloading this version are available on the Dell SmartFabric OS10 downloads page.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

7.5

exploitability

3.5

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

7.5

exploitability

3.5

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell SmartFabric OS10 Command Injection Vulnerability Allowing Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

Dell SmartFabric OS10

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating