CVE-2025-43940

Name of the Vulnerable Software and Affected Versions Dell Unity versions 5.5 and prior

Description Dell Unity software contains an Improper Neutralization of Special Elements used in an OS Command vulnerability, also known as OS Command Injection. A local attacker with low privileges could potentially exploit this issue to execute commands and gain elevated privileges.

Recommendations Update Dell Unity to a version later than 5.5. At the moment, there is no information about a newer version that contains a fix for this vulnerability.