Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.5
Dell Unisphere for PowerMax 10.2: Sensitive Data Leaked via Malicious File Access
CVE-2026-26361
Summary
A low-privilege attacker with remote access can exploit a weakness in Dell Unisphere for PowerMax 10.2, potentially exposing sensitive information. This issue affects the security of your data. Update to the latest version to fix this vulnerability.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| dell | unisphere_for_powermax | <= 10.3.0.1 | – |
| dell | unisphere_for_powermax | <= 10.3.0.1 | – |
Original title
Dell Unisphere for PowerMax, version(s) 10.2, contain(s) an External Control of File Name or Path vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerab...
Original description
Dell Unisphere for PowerMax, version(s) 10.2, contain(s) an External Control of File Name or Path vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure.
nvd CVSS3.1
6.5
Vulnerability type
CWE-73
Published: 19 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026