Dell Issues Critical PowerStore T Security Update

Dell Technologies has rolled out a critical security update for its PowerStore T family of storage appliances, addressing multiple vulnerabilities that could leave systems exposed to exploitation. The update, detailed in Security Advisory DSA-2025-223, is rated as high impact and is strongly recommended for all users to apply without delay.

What’s at Stake?

This update targets both proprietary and third-party vulnerabilities that, if left unaddressed, could allow malicious actors to compromise system integrity, access sensitive data, or disrupt operations.

The most critical issue, tracked as CVE-2025-36572, stems from hard-coded credentials embedded within the PowerStore image file. If an attacker has remote access and knowledge of these credentials, they could use them to gain unauthorized entry into the system, exposing sensitive system resources.

Beyond proprietary risks, the update remediates several vulnerabilities across widely used third-party components. These include:

• bind-utils

• glib2

• kernel

• libsoup

• libtasn1

• libxml2

• OpenSSL

• rsync

• xen

The vulnerabilities span a range of security concerns, including privilege escalation, information disclosure, denial of service, and remote code execution.

Affected Products

The following PowerStore T models and firmware versions are impacted:

Conclusion

Given the potential for unauthorized access, data leakage, and service disruption, Dell classifies the overall impact as highand advises all PowerStore T customers to update their systems to the latest remediated firmware version.

Follow cybersecurity88 on X and LinkedIn for the latest cybersecurity news