Dell Unisphere for PowerMax
Moderate fix2 remedies
cpe:2.3:a:dell:unisphere_for_powermax:*:*:*:*:*:*:*
Moderate fix2 remedies
- >= 9.2.4.15, < 9.2.4.17
- >= 10.2.0.9, < 10.2.0.12
Dell Unisphere for PowerMax Virtual Appliance Static Code Injection Vulnerability Allowing Remote Code Execution
Vulnerability
Patched
A static code injection vulnerability has been identified in Dell Unisphere for PowerMax virtual appliance, specifically in version 9.2.4.x. This vulnerability arises from improper neutralization of directives in statically saved code. A high-privileged attacker with remote access could exploit this issue, potentially leading to unauthorized code execution.
Impact
Exploitation of this vulnerability could result in unauthorized code execution on the affected system.
Remediation
Users can upgrade to version 9.2.4.17 or later to address this vulnerability. Instructions for downloading the update are available on the Dell Unisphere for PowerMax product support page.
Added: Sep 1, 2025, 7:22 PM
Updated: Sep 1, 2025, 7:22 PM
Vulnerability Rating
Custom Algorithm
spread
2.6impact
10.0exploitability
4.4remediation
7.7relevance
0.2threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.