CVE Details
Basic Information
| Title | CVE-2025-36604 |
|---|---|
| Type | cve |
| Published | 2025-08-04T14:00:05.295Z |
| Modified | 2025-08-04T14:11:48.217Z |
Product Information
| Vendor | Dell |
|---|---|
| Product | Unity |
| Version | N/A |
CVSS Information
| Base Score | 7.3 (HIGH) |
|---|---|
| Attack Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L |
AI Analysis
| AI Description | Dell Unity versions 5.5 and prior are vulnerable to OS Command Injection, allowing remote attackers to execute arbitrary commands. |
|---|---|
| AI Severity | High |
| AI Vendor | Dell Technologies |
| AI Product | Dell Unity |
| AI Version | 5.5 and prior |
Affected Products
- Dell Unity N/A
Additional Information
| CWE List | CWE-78 |
|---|---|
| Source | dell |
Description
Dell Unity, version(s) 5.5 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command (‘OS Command Injection’) vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command execution.