CVE-2025-36604 is a high-severity OS command injection vulnerability affecting Dell Unity storage systems, specifically versions 5.5 and prior. The vulnerability arises from improper neutralization of special elements used in operating system commands (CWE-78), allowing an unauthenticated remote attacker to execute arbitrary OS commands on the affected system. This means that the input validation or sanitization mechanisms in Dell Unity's software fail to adequately filter or escape special characters or command delimiters, enabling attackers to inject malicious commands. Since the vulnerability can be exploited without any authentication or user interaction, it significantly lowers the barrier for exploitation. The CVSS 3.1 base score of 7.3 reflects a high severity with network attack vector (AV:N), low attack complexity (AC:L), no privileges required (PR:N), and no user interaction needed (UI:N). The impact includes potential confidentiality, integrity, and availability compromises, as arbitrary command execution can lead to data leakage, unauthorized data modification, or disruption of storage services. Although no known exploits are currently reported in the wild, the vulnerability's characteristics make it a critical concern for organizations relying on Dell Unity storage solutions. The lack of available patches at the time of publication further increases the urgency for mitigation and monitoring.

For European organizations, the impact of this vulnerability could be severe, especially for enterprises and data centers that utilize Dell Unity storage arrays for critical data storage and management. Successful exploitation could lead to unauthorized access to sensitive data, disruption of storage services, and potential lateral movement within the network. This could affect data confidentiality, leading to breaches of personal data protected under GDPR, and compromise data integrity and availability, impacting business continuity. The ability to execute arbitrary commands remotely without authentication increases the risk of ransomware deployment or other malicious activities. Given the central role of storage systems in IT infrastructure, exploitation could cascade into broader operational disruptions. Additionally, organizations in regulated sectors such as finance, healthcare, and government may face compliance and reputational risks if this vulnerability is exploited.

1. Immediate mitigation should include restricting remote access to Dell Unity management interfaces to trusted networks only, using network segmentation and firewall rules to limit exposure. 2. Implement strict monitoring and logging of all access attempts and command executions on Dell Unity systems to detect suspicious activities early. 3. Apply virtual patching techniques such as Web Application Firewalls (WAFs) or Intrusion Prevention Systems (IPS) with custom rules to detect and block command injection patterns targeting Dell Unity interfaces. 4. Engage with Dell support channels to obtain any available patches or security advisories and plan for prompt application once released. 5. Conduct thorough security assessments and penetration testing focused on Dell Unity systems to identify any exploitation attempts or related vulnerabilities. 6. Educate IT and security teams about this specific vulnerability to ensure rapid response and incident handling. 7. Consider deploying endpoint detection and response (EDR) solutions on systems interacting with Dell Unity to detect anomalous command executions or lateral movement.