Lucene search
+L

22 matches found

CNNVD
CNNVD
added 2026/05/22 12:0 a.m.11 views

Dell ECS 访问控制错误漏洞

Dell ECS is an enterprise-level object storage solution from the American company Dell. Versions 3.5 and 3.6 of Dell ECS contain access control vulnerability issues. This vulnerability stems from improper access control in the identity and access management module, which may allow remote...

7.5CVSS5.8AI score0.00346EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/12 8:21 p.m.11 views

CVE-2026-35157

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an improper neutralization of formula elements in a CSV File vulnerability in the UI. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to remote...

9.8CVSS5.8AI score0.00317EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/11 9:27 a.m.44 views

CVE-2025-43992

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an authentication bypass by assumed-immutable data vulnerability in Geo replication. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to...

5.6CVSS0.00235EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/11 8:57 a.m.9 views

CVE-2026-40636

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains a use of hard-coded credentials vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerability, leading to filesystem access for attacker...

9.8CVSS5.8AI score0.00223EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/11 8:57 a.m.6 views

CVE-2026-40636

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains a use of hard-coded credentials vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerability, leading to filesystem access for attacker...

9.8CVSS5.8AI score0.00223EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.12 views

PT-2026-39585

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an improper privilege management vulnerability in the OS. A high privileged attacker with local access could potentially exploit this vulnerability, leading to elevation of privileges...

6.7CVSS5.8AI score0.00104EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.10 views

Dell ECS和Dell ObjectScale 信任管理问题漏洞

Dell ECS and Dell ObjectScale are both products of the American company Dell. Dell ECS is an scalable, manageable, and elastic enterprise-level object storage solution. Dell ObjectScale is an object storage platform. There were security management vulnerabilities in versions 3.8.1.0 to 3.8.1.7 of...

9.8CVSS5.8AI score0.00223EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/08 3:31 p.m.6 views

EUVD-2026-20468

Dell Elastic Cloud Storage, version 3.8.1.7 and prior, and Dell ObjectScale, versions prior to 4.1.0.3 and version 4.2.0.0, contains an Insertion of Sensitive Information into Log File vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading...

7.8CVSS5.8AI score0.00107EPSS
Exploits0References2
NVD
NVD
added 2026/04/08 1:16 p.m.9 views

CVE-2026-28261

Dell Elastic Cloud Storage, version 3.8.1.7 and prior, and Dell ObjectScale, versions prior to 4.1.0.3 and version 4.2.0.0, contains an Insertion of Sensitive Information into Log File vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading...

7.8CVSS0.00107EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/08 12:43 p.m.3 views

CVE-2026-28261

Dell Elastic Cloud Storage, version 3.8.1.7 and prior, and Dell ObjectScale, versions prior to 4.1.0.3 and version 4.2.0.0, contains an Insertion of Sensitive Information into Log File vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading...

7.8CVSS5.8AI score0.00107EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/08 12:43 p.m.22 views

CVE-2026-28261

Dell Elastic Cloud Storage, version 3.8.1.7 and prior, and Dell ObjectScale, versions prior to 4.1.0.3 and version 4.2.0.0, contains an Insertion of Sensitive Information into Log File vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading...

7.8CVSS0.00107EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/08 12:43 p.m.15 views

CVE-2026-28261

Dell Elastic Cloud Storage, version 3.8.1.7 and prior, and Dell ObjectScale, versions prior to 4.1.0.3 and version 4.2.0.0, contains an Insertion of Sensitive Information into Log File vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading...

7.8CVSS5.8AI score0.00107EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/08 12:0 a.m.10 views

Dell ObjectScale和Dell Elastic Cloud Storage 日志信息泄露漏洞

Dell ObjectScale and Dell Elastic Cloud Storage are products of the American company Dell. Dell ObjectScale is an object storage platform. Dell Elastic Cloud Storage is a large-scale storage platform. Versions of Dell Elastic Cloud Storage 3.8.1.7 and earlier, as well as Dell ObjectScale versions...

7.8CVSS5.8AI score0.00107EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/24 9:15 a.m.8 views

CVE-2026-22271

Dell ECS, versions 3.8.1.0 through 3.8.1.7, and Dell ObjectScale versions prior to 4.2.0.0, contains a Cleartext Transmission of Sensitive Information vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to information exposure...

7.5CVSS5.5AI score0.00192EPSS
Exploits0References1
CVE
CVE
added 2026/01/23 9:25 a.m.25 views

CVE-2026-22274

CVE-2026-22274 affects Dell EMC/Dell ObjectScale: Dell ECS versions 3.8.1.0–3.8.1.7 and Dell ObjectScale prior to 4.2.0.0 contain a Cleartext Transmission of Sensitive Information vulnerability in the Fabric Syslog. An unauthenticated remote attacker could intercept and modify information in tran...

6.5CVSS5.6AI score0.0016EPSS
Exploits0References1Affected Software2
OSV
OSV
added 2026/01/23 9:15 a.m.4 views

CVE-2026-22271

Dell ECS, versions 3.8.1.0 through 3.8.1.7, and Dell ObjectScale versions prior to 4.2.0.0, contains a Cleartext Transmission of Sensitive Information vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to information exposure...

7.5CVSS5.9AI score0.00192EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/23 9:14 a.m.4 views

CVE-2026-22273

Dell ECS, versions 3.8.1.0 through 3.8.1.7, and Dell ObjectScale versions prior to 4.2.0.0, contains an Use of Default Credentials vulnerability in the OS. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Elevation of privileges...

8.8CVSS5.5AI score0.00332EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/23 12:0 a.m.7 views

Dell ECS and Dell ObjectScale security vulnerabilities

Dell ECS and Dell ObjectScale are both products of the American company Dell. Dell ECS is an scalable, manageable, and elastic enterprise-level object storage solution. Dell ObjectScale is an object storage platform. There are security vulnerabilities in versions 3.8.1.0 to 3.8.1.7 of Dell ECS, a...

5.5CVSS5.8AI score0.00094EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/23 12:0 a.m.12 views

PT-2026-4348

Dell ECS, versions 3.8.1.0 through 3.8.1.7, and Dell ObjectScale versions prior to 4.2.0.0, contains a Cleartext Storage of Sensitive Information vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure...

5.5CVSS5.4AI score0.00094EPSS
Exploits0References2
OSV
OSV
added 2025/07/15 3:15 p.m.7 views

CVE-2025-30483

Dell ECS versions prior to 3.8.1.5/ ObjectScale version 4.0.0.0 contains an Insertion of Sensitive Information into Log File vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References1
Rows per page
Query Builder