CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-21418

Dell Unity, version(s) 5.5.2 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary command execution with root privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.4%

CVSS Severity

CVSS v3 Score 7.8

References

https://www.dell.com/support/kbdoc/en-us/000421197/dsa-2026-054-security-update-for-dell-unity-dell-unityvsa-and-dell-unity-xt-security-update-for-multiple-vulnerabilities

Products affected by CVE-2026-21418

Dell » Unity Operating Environment » Version: N/A

cpe:2.3:a:dell:unity_operating_environment:-
Dell » Unity Operating Environment » Version: 5.0.7.0.5.008

cpe:2.3:a:dell:unity_operating_environment:5.0.7.0.5.008
Dell » Unity Operating Environment » Version: 5.2.0.0.5.173

cpe:2.3:a:dell:unity_operating_environment:5.2.0.0.5.173
Dell » Unity Operating Environment » Version: 5.3.0.0.5.120

cpe:2.3:a:dell:unity_operating_environment:5.3.0.0.5.120
Dell » Unity Operating Environment » Version: 5.4.0.0

cpe:2.3:a:dell:unity_operating_environment:5.4.0.0
Dell » Unity Operating Environment » Version: 5.4.0.0.5.094

cpe:2.3:a:dell:unity_operating_environment:5.4.0.0.5.094
Dell » Unity Operating Environment » Version: 5.5.0.0.5.259

cpe:2.3:a:dell:unity_operating_environment:5.5.0.0.5.259
Dell » Unity Operating Environment » Version: 5.5.1.0

cpe:2.3:a:dell:unity_operating_environment:5.5.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-21418

Products

Pricing

Contact Us