Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.1
Dell Unisphere for PowerMax versions 10.2: Malicious files can be deleted remotely
CVE-2026-26360
Summary
A security issue in Dell Unisphere for PowerMax version 10.2 allows an attacker with limited access to potentially delete any files. This means that if an attacker can access your system remotely, they may be able to delete important files. To protect your system, you should update to the latest version of Dell Unisphere for PowerMax.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| dell | unisphere_for_powermax | <= 10.3.0.1 | – |
| dell | unisphere_for_powermax | <= 10.3.0.1 | – |
Original title
Dell Unisphere for PowerMax, version(s) 10.2, contain(s) an External Control of File Name or Path vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerab...
Original description
Dell Unisphere for PowerMax, version(s) 10.2, contain(s) an External Control of File Name or Path vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability to delete arbitrary files.
nvd CVSS3.1
8.1
Vulnerability type
CWE-73
Published: 19 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026