Dell Unity OS Command Injection Vulnerability

Dell Unity OS Command Injection Vulnerability

CVE-2024-0167 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability in the svc_topstats utility. An authenticated attacker could potentially exploit this vulnerability, leading to the ability to overwrite arbitrary files on the file system with root privileges.

Learn more about our Web Application Penetration Testing UK.