CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-36595

Dell Unisphere for PowerMax vApp, version(s) 9.2.4.x, contain(s) an Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.3%

CVSS Severity

CVSS v3 Score 7.2

References

https://www.dell.com/support/kbdoc/en-us/000337554/dsa-2025-235-dell-powermaxos-dell-powermax-eem-dell-unisphere-for-powermax-dell-unisphere-for-powermax-virtual-appliance-dell-unisphere-360-dell-solutions-enabler-and-dell-solutions-enabler-virtual-appliance-security-update-for-multiple-vulnerabilit

Products affected by CVE-2025-36595

Dell » Solutions Enabler Virtual Appliance » Version: Any

cpe:2.3:a:dell:solutions_enabler_virtual_appliance:*
Dell » Unisphere For Powermax Virtual Appliance » Version: Any

cpe:2.3:a:dell:unisphere_for_powermax_virtual_appliance:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-36595

Products

Pricing

Contact Us