PT-2026-42126 · Dell · Smartfabric Storage

Published

2026-05-20

·

Updated

2026-05-22

·

CVE-2026-35070

CVSS v3.1

6.4

Medium

VectorAV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Dell SmartFabric Storage Software versions prior to 1.4.5
Description An improper neutralization of special elements used in a command, known as command injection, allows a high privileged attacker with local access to potentially gain filesystem access.
Recommendations Update to version 1.4.5.

Fix

Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-35070

Affected Products

Smartfabric Storage