Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
DellElastic Cloud Storage

9 matches found

CVE
CVEadded 2024/02/28 9:15 a.m.102 views

CVE-2024-22459

Dell ECS, versions 3.6 through 3.6.2.5, and 3.7 through 3.7.0.6, and 3.8 through 3.8.0.4 versions, contain an improper access control vulnerability. A remote high privileged attacker could potentially exploit this vulnerability, leading to unauthorized access to all buckets and their data within a ...

6.8CVSS6.3AI score0.00214EPSS
CVE
CVEadded 2020/02/06 6:15 p.m.64 views

CVE-2020-5317

Dell EMC ECS versions prior to 3.4.0.1 contain an XSS vulnerability. A remote authenticated malicious user could exploit this vulnerability to store malicious HTML or JavaScript code in a trusted application data store. When victim users access the data store through their browsers, the malicious c...

6.2CVSS4.7AI score0.00205EPSS
CVE
CVEadded 2024/12/26 4:15 p.m.60 views

CVE-2024-51540

Dell ECS, versions prior to 3.8.1.3 contains an arithmetic overflow vulnerability exists in retention period handling of ECS. An authenticated user with bucket or object-level access and the necessary privileges could potentially exploit this vulnerability to bypass retention policies and delete ob...

8.1CVSS7.2AI score0.00069EPSS
CVE
CVEadded 2024/12/09 3:15 p.m.50 views

CVE-2024-38485

Dell ECS, versions prior to 3.8.0, contain(s) a Host Header Injection Vulnerability. A remote low-privileged attacker could potentially exploit this vulnerability to trigger redirections that leads to sensitive information leakage.

4.3CVSS6.8AI score0.00061EPSS
CVE
CVEadded 2024/12/25 4:15 p.m.47 views

CVE-2024-52534

Dell ECS, version(s) prior to ECS 3.8.1.3, contain(s) an Authentication Bypass by Capture-replay vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Session theft.

5.4CVSS7.1AI score0.00075EPSS
CVE
CVEadded 2017/10/03 1:29 a.m.36 views

CVE-2017-8021

EMC Elastic Cloud Storage (ECS) before 3.1 is affected by an undocumented account vulnerability that could potentially be leveraged by malicious users to compromise the affected system.

10CVSS9.2AI score0.00953EPSS
CVE
CVEadded 2020/09/02 9:15 p.m.32 views

CVE-2020-5386

Dell EMC ECS, versions prior to 3.5, contains an Exposure of Resource vulnerability. A remote unauthenticated attacker can access the list of DT (Directory Table) objects of all internally running services and gain knowledge of sensitive data of the system.

8.1CVSS7.7AI score0.00879EPSS
CVE
CVEadded 2024/07/18 4:15 p.m.31 views

CVE-2024-30473

Dell ECS, versions prior to 3.8.1, contain a privilege elevation vulnerability in user management. A remote high privileged attacker could potentially exploit this vulnerability, gaining access to unauthorized end points.

6.5CVSS6.7AI score0.00129EPSS
CVE
CVEadded 2023/05/04 7:15 a.m.25 views

CVE-2023-25934

DELL ECS prior to 3.8.0.2 contains an improper verification of cryptographic signature vulnerability. A network attacker with an ability to intercept the request could potentially exploit this vulnerability to modify the body data of the request.

7.5CVSS7.4AI score0.0007EPSS