Zero Day MonitorZDM
DashboardVulnerabilitiesTrendingZero-DaysNewsAbout
Login
ImpressumPrivacy Policy
Zero Day Monitor © 2026
2748 articles · 174983 vulns · 37/41 feeds (7d)
← Back to list
8.8
CVE-2026-54469EXPLOITEDPATCHED
dell · unisphere for powermax

CVE-2026-54469: Dell Unisphere for PowerMax, version(s) 10.3.0.5 and prior, contain(s) a Deserialization of Untrusted Data vulnerability

Description

Dell Unisphere for PowerMax, version(s) 10.3.0.5 and prior, contain(s) a Deserialization of Untrusted Data vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command execution with root privileges.

Affected Products

VendorProductVersions
dellunisphere for powermax0, 0

References

  • https://www.dell.com/support/kbdoc/en-us/000483543/dsa-2026-272-dell-powermaxos-dell-powermax-eem-dell-unisphere-for-powermax-dell-unisphere-for-powermax-virtualappliance-dell-unisphere-360-dell-solutionsenabler-and-dell-solutionsenabler-virtualappliance-security-update-for-multiple-vulnerabilities(vendor-advisory)

Related News (1 articles)

Tier C
VulDB3d ago
CVE-2026-54469 | Dell Unisphere for PowerMax up to 10.3.0 Deserialization deserialization
→ No new info (linked only)
CVSS 3.18.8 CRITICAL
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA KEV❌ No
Actively exploited✅ Yes
Patch available
10.3.0.7 or later10.3.1.1 Patch 11360 or later
CWECWE-502
PublishedJul 10, 2026
Last enriched3d agov2
Trending Score29
Source articles1
Independent1
Info Completeness9/14
Missing: epss, kev, exploit, iocs, mitre_attack

Community Vote

0
Login to vote
0 upvotes0 downvotes
No votes yet

Related CVEs (5)

MEDIUMCVE-2026-40639
CVE-2026-40639: Dell Client Platform BIOS contains a Weak Encoding for Password vulnerability. An unauthenticated attacker with physical
Trending: 41
CRITICALCVE-2026-53483
CVE-2026-53483: Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 r
Trending: 28
HIGHCVE-2026-56689EXP
CVE-2026-56689: Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements used in an S
Trending: 27
HIGHCVE-2026-56690EXP
CVE-2026-56690: Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements used in an S
Trending: 27
CRITICALCVE-2026-53481
CVE-2026-53481: Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 r
Trending: 22

Pin to Dashboard

Verification

State: unverified
Confidence: 0%

Vulnerability Timeline

CVE Published
Jul 10, 2026
Discovered by ZDM
Jul 10, 2026
Actively Exploited
Jul 10, 2026
Patch Available
Jul 10, 2026
Updated: severity, activelyExploited
Jul 10, 2026

Version History

v2
Last enriched 3d ago
v2Tier C3d ago

Updated severity to CRITICAL and noted that there is no exploit available.

severityactivelyExploited
via VulDB
v13d ago

Initial creation