Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.8
Dell Unisphere for PowerMax 10.2: Malicious File Overwriting
CVE-2026-26359
Summary
A low-privilege attacker with remote access to your Dell Unisphere for PowerMax 10.2 system could potentially delete or change any file, which could disrupt your storage management and data security. This is a concern because it could allow unauthorized changes to your system. To protect your system, apply the latest security updates to Dell Unisphere for PowerMax 10.2 as soon as possible.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| dell | unisphere_for_powermax | <= 10.3.0.1 | – |
| dell | unisphere_for_powermax | <= 10.3.0.1 | – |
Original title
Dell Unisphere for PowerMax, version(s) 10.2, contain(s) an External Control of File Name or Path vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerab...
Original description
Dell Unisphere for PowerMax, version(s) 10.2, contain(s) an External Control of File Name or Path vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to the ability to overwrite arbitrary files.
nvd CVSS3.1
8.8
Vulnerability type
CWE-73
Published: 19 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026