CVE-2025-36605

Name of the Vulnerable Software and Affected Versions Dell Unity versions 5.5 and prior

Description Dell Unity versions 5.5 and prior contain an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. An unauthenticated attacker with remote access could potentially exploit this issue, leading to the execution of malicious HTML or JavaScript code in a victim user's web browser within the context of the vulnerable web application. Exploitation may lead to information disclosure, session theft, or client-side request forgery.

Recommendations Update Dell Unity to a version newer than 5.5.