PT-2025-31809 · Dell · Dell Unity
Published
2025-08-04
·
Updated
2025-08-04
·
CVE-2025-36604
CVSS v3.1
7.3
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L |
Fix
OS Command Injection
Weakness Enumeration
Related Identifiers
Affected Products
Dell Unity
Published
2025-08-04
·
Updated
2025-08-04
·
CVE-2025-36604
7.3
High
| Base vector | Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions:
Dell Unity versions prior to 5.5
Description:
Dell Unity versions 5.5 and prior contain an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A remote, unauthenticated attacker could potentially execute arbitrary commands.
Recommendations:
Update Dell Unity to a version later than 5.5.
Fix
OS Command Injection