CNNVD-202601-3814 Information

Jan 22, 2026 cve

CNNVD ID

CNNVD-202601-3814

CVE-2025-36588

  • CNNVD Published: 2026-01-22

Description (Chinese)

Dell Unisphere for PowerMax是美国戴尔(Dell)公司的一个图形化管理平台。 Dell Unisphere for PowerMax 10.2.0.x版本存在SQL注入漏洞,该漏洞源于特殊元素中和不当,可能导致SQL注入和命令执行。

Description (English)

Dell United for PowerMax is a graphical management platform for Dell Corporation in the United States. The Dell Unithere for PowerMax 10.2.0.x version contains an injection loophole in SQL, which originates in a special element and is inappropriate and may lead to SQL injection and command execution.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

戴尔

Published

2026-01-22

Last Modified

2026-02-24

References

https://www.dell.com/support/kbdoc/en-us/000402262/dsa-2025-425-dell-powermaxos-dell-powermax-eem-dell-unisphere-for-powermax-dell-unisphere-for-powermax-virtual-appliance-dell-unisphere-360-dell-solutions-enabler-virtual-appliance-security-update-for-multiple-vulnerabilities

Patch

https://www.dell.com/support/kbdoc/en-us/000402262/dsa-2025-425-dell-powermaxos-dell-powermax-eem-dell-unisphere-for-powermax-dell-unisphere-for-powermax-virtual-appliance-dell-unisphere-360-dell-solutions-enabler-virtual-appliance-security-update-for-multiple-vulnerabilities

Share on: