Vulnerability Details CVE-2026-56690
Dell PowerFlex Manager, Version prior to 5.1.0.1, contain(s) an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure, Information exposure, and Unauthorized access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 13.8%
CVSS Severity
CVSS v3 Score 8.5
Products affected by CVE-2026-56690
-
cpe:2.3:a:dell:powerflex_manager:4.5.5
-
cpe:2.3:a:dell:powerflex_manager:4.5.5.1
-
cpe:2.3:a:dell:powerflex_manager:5.1.0