Dell Unity OS Command Injection Vulnerability

Dell Unity OS Command Injection Vulnerability

CVE-2024-22225 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability in its svc_supportassist utility. An authenticated attacker could potentially exploit this vulnerability, leading to execution of arbitrary operating system commands with root privileges.

Learn more about our Web Application Penetration Testing UK.