Severity by source
AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Lifecycle Timeline
3DescriptionCVE.org
Dell PowerScale InsightIQ, versions 6.0.0 through 6.2.0, contains an improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution.
AnalysisAI
OS command injection in Dell PowerScale InsightIQ 6.0.0 through 6.2.0 allows high-privileged local administrators to execute arbitrary system commands with elevated privileges, achieving container escape (scope change) on the storage cluster management platform. Dell published security advisory DSA-2026-208 addressing this vulnerability. EPSS data not available; no CISA KEV listing indicates targeted rather than widespread exploitation at time of analysis.
Technical ContextAI
PowerScale InsightIQ is Dell's performance monitoring and analytics appliance for PowerScale (formerly Isilon) storage clusters, typically deployed as a virtual machine or containerized service with access to cluster management APIs. This vulnerability stems from improper neutralization of special elements in OS command construction (CWE-78), a class of injection flaws where user-controlled input is passed unsanitized to system shell interpreters. The affected CPE (cpe:2.3:a:dell:powerscale_insightiq) encompasses versions 6.0.0 through 6.2.0, representing approximately two years of product releases. The CVSS vector indicates a changed scope (S:C), suggesting the attacker can break out of the immediate application context-likely escaping containerization or VM boundaries to affect the underlying hypervisor or adjacent storage cluster nodes.
RemediationAI
Dell has published security update DSA-2026-208 addressing this vulnerability-upgrade PowerScale InsightIQ to the patched version specified in the advisory at https://www.dell.com/support/kbdoc/en-us/000463695/dsa-2026-208-security-update-for-dell-powerscale-insightiq-multiple-vulnerabilities (exact patched version number not independently confirmed from provided data; consult Dell advisory for specific release). If immediate patching is not feasible, implement compensating controls: restrict InsightIQ administrative access to jump hosts or privileged access workstations with session recording and command logging enabled; enforce multi-factor authentication for all InsightIQ administrator accounts; implement network segmentation isolating InsightIQ management interfaces from general administrative networks; audit all privileged user activity with SIEM correlation rules flagging unusual command patterns. Note that restricting administrative access may impact legitimate monitoring workflows and should be coordinated with storage operations teams. These mitigations reduce attack surface but do not eliminate the underlying vulnerability-patching remains the definitive remediation.
SQL injection vulnerability in d4d/statusFilter.php in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.2
The ViewPoint web application in Dell SonicWALL Global Management System (GMS) before 7.2 SP2, SonicWALL Analyzer before
The MySQL component in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) 9.0.1.19899 and earlier has a default passwor
Multiple SQL injection vulnerabilities in Dell SonicWall Scrutinizer 11.0.1 allow remote authenticated users to execute
Dell RecoverPoint for Virtual Machines prior to 6.0.3.1 HF1 contains hardcoded credentials (CVE-2026-22769, CVSS 10.0) t
An unrestricted file upload vulnerability exists in Dell (acquired by Quest) KACE K1000 System Management Appliance vers
cgi-bin/admin.cgi in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.0 does not requir
The IPMI 1.5 functionality in Dell iDRAC6 modular before 3.65, iDRAC6 monolithic before 1.98, and iDRAC7 before 1.57.57
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of EMC Data Protection
d4d/uploader.php in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.0 allows remote at
Dell dbutil_2_3.sys driver contains an insufficient access control vulnerability which may lead to escalation of privile
Dell Unity, version(s) 5.5 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('
Same weakness CWE-78 – OS Command Injection
View allSame technique Command Injection
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-29469
GHSA-q3jj-rxg6-8h9m