CVE-2026-22277 – Dell UnityVSA OS Command Injection

CVE ID : CVE-2026-22277

Published : Jan. 30, 2026, 8:27 a.m. | 43 minutes ago

Description : Dell UnityVSA, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command (‘OS Command Injection’) vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary command execution with root privileges.

Severity: 7.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…