What is CVE-2026-28265?

CVE-2026-28265 is a medium-severity vulnerability in Dell Powerstore, classified under Path Traversal: '.../...//'. CVSS score: 4.4/10. Published 2026-04-01.

How severe is CVE-2026-28265?

Medium severity. CVSS v3 base score is 4.4 out of 10.

Path Traversal in Dell Powerstore

CVE-2026-28265

PowerStore, contains a Path Traversal vulnerability in the Service user. A low privileged attacker with local access could potentially exploit this vulnerability, leading to modification of arbitrary system files.

EPSS: 0.000 (3.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.4 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L.

Affected products

Dell Powerstore — versions 0
Dell Powerstore 1000t — versions 0
Dell Powerstore 1200t — versions 0
Dell Powerstore 3000t — versions 0
Dell Powerstore 3200q — versions 0
Dell Powerstore 3200t — versions 0
Dell Powerstore 5000t — versions 0
Dell Powerstore 500t — versions 0
Dell Powerstore 5200q — versions 0
Dell Powerstore 5200t — versions 0

Weakness classification (CWE)

CWE-35 — Path Traversal: '.../...//'

References

www.dell.com/support/kbdoc/en-us/000444169/dsa-2026-157-dell-powerstore-t-secur…

Frequently asked questions

What is CVE-2026-28265?: CVE-2026-28265 is a medium-severity vulnerability in Dell Powerstore, classified under Path Traversal: '.../...//'. CVSS score: 4.4/10. Published 2026-04-01.
How severe is CVE-2026-28265?: Medium severity. CVSS v3 base score is 4.4 out of 10.