CVE-2025-46422

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Dell Unity versions 5.5 and prior

Description Dell Unity versions 5.5 and prior contain an Improper Neutralization of Special Elements used in an OS Command vulnerability, also known as an OS Command Injection issue. A low privileged attacker with local access could potentially exploit this to execute arbitrary commands with root privileges.

Recommendations Update to a version of Dell Unity later than 5.5.

Fix

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

CVE-2025-46422

Affected Products

Dell Unity

CVE-2025-46422

Weakness Enumeration

Related Identifiers

Affected Products

References · 7