CVE-2026-28265

Published: Apr 01, 2026 Last Modified: Apr 01, 2026

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 4,4

Source: [email protected]

Attack Vector: local

Attack Complexity: low

Privileges Required: low

User Interaction: none

Scope: unchanged

Confidentiality: none

Integrity: low

Availability: low

Description

AI Translation Available

PowerStore, contains a Path Traversal vulnerability in the Service user. A low privileged attacker with local access could potentially exploit this vulnerability, leading to modification of arbitrary system files.

Path Traversal: '.../...//'

Incomplete

Abstraction: Variant Structure: Simple

Common Consequences

Security Scopes Affected:

Confidentiality Integrity

Potential Impacts:

Read Files Or Directories Modify Files Or Directories Bypass Protection Mechanism

Applicable Platforms

All platforms may be affected

View CWE Details

https://www.dell.com/support/kbdoc/en-us/000444169/dsa-2026…

https://www.dell.com/support/kbdoc/en-us/000444169/dsa-2026-157-dell-powerstore…

CVE-2026-28265

Description

Path Traversal: '.../...//'

Common Consequences

Applicable Platforms

Iscriviti alla newsletter