Primary

Context

Dell UnityVSA OS Command Injection Vulnerability Allowing Arbitrary Command Execution as Root

Vulnerability

Patched

A command injection vulnerability has been identified in Dell UnityVSA versions through 5.4. This vulnerability allows a low-privileged attacker with local access to execute arbitrary commands with root privileges on the affected system.

Impact

Exploitation of this vulnerability could lead to unauthorized arbitrary command execution with root privileges on the affected system.

Remediation

Users are advised to update to Dell Unity version 5.5.3 or later. Instructions for downloading the update are available on the Dell Support website.

Added: Jan 30, 2026, 9:18 AM

Updated: Jan 30, 2026, 9:18 AM

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

7.5

exploitability

3.5

remediation

7.7

relevance

2.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

7.5

exploitability

3.5

remediation

7.7

relevance

2.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell UnityVSA OS Command Injection Vulnerability Allowing Arbitrary Command Execution as Root

Vulnerability

Impact

Remediation

Affected Products

Dell UnityVSA

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating