Primary

Context

Dell Unity Cross-Site Scripting Vulnerability

Vulnerability

Patched

A cross-site scripting vulnerability has been identified in Dell Unity versions through 5.5. An unauthenticated attacker with remote access could exploit this issue, allowing the execution of malicious HTML or JavaScript in the context of the affected web application. This exploitation could result in information disclosure, session theft, or client-side request forgery.

Impact

Exploitation of this vulnerability could lead to the execution of malicious scripts in the context of the victim's browser, potentially allowing for information theft, session hijacking, or unauthorized actions on behalf of the user.

Remediation

Users can upgrade to Dell Unity version 5.5.1 or later. Instructions for downloading the update are available on the Dell Unity All Flash Family Drivers page.

Added: Aug 4, 2025, 2:23 PM

Updated: Aug 4, 2025, 3:13 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

5.4

exploitability

6.0

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

5.4

exploitability

6.0

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell Unity Cross-Site Scripting Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Dell Unity

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating