Dell Unisphere for PowerMax
Moderate fix1 remedy
cpe:2.3:a:dell:unisphere_for_powermax:*:*:*:*:*:*:*
Moderate fix1 remedy
- >= 9.2.4.0, < 9.2.4.19
Dell Unisphere for PowerMax Improper XML External Entity Reference Vulnerability
Vulnerability
Patched
A vulnerability allowing improper restriction of XML external entity references has been identified in Dell Unisphere for PowerMax versions 9.2.4.x. This vulnerability could be exploited by a low-privileged attacker with remote access, potentially leading to unauthorized access to data and resources outside of the intended control.
Impact
Exploitation of this vulnerability could result in unauthorized access to data and resources beyond the user's intended control.
Remediation
Users can upgrade to version 9.2.4.19 or later. For Unisphere for PowerMax Virtual Appliance, version 9.2.4.19 or later is recommended. Instructions for downloading the update are available on the Dell Unisphere for PowerMax drivers page.
Added: Jan 6, 2026, 5:34 PM
Updated: Jan 6, 2026, 5:34 PM
Vulnerability Rating
Custom Algorithm
spread
2.6impact
2.5exploitability
4.9remediation
7.7relevance
1.9threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.