Lucene search
K

13 matches found

CVE
CVE
added 2025/04/17 11:37 a.m.64 views

CVE-2025-26478

Dell ECS vulnerable? CVE-2025-26478 affects Dell ECS 3.8.1.4 and earlier. The root cause is improper certificate validation in the server, enabling an unauthenticated attacker with adjacent network access to cause information disclosure. Exploitation details are not provided in the linked documen...

6.5CVSS7AI score0.00106EPSS
CVE
CVE
added 2025/04/17 11:45 a.m.62 views

CVE-2025-26477

CVE-2025-26477 affects Dell ECS up to version 3.8.1.4: an Improper Input Validation vulnerability that could allow a low-privileged, remotely authenticated attacker to achieve code execution. The connected documents confirm the affected software and the root cause (input validation error) with a ...

8.8CVSS7.4AI score0.00323EPSS
CVE
CVE
added 2025/07/15 2:30 p.m.27 views

CVE-2025-30483

CVE-2025-30483 affects Dell ECS prior to 3.8.1.5 and Dell ObjectScale prior to 4.0.0.0, where an insertion of sensitive information into log files may allow a low-privilege, local attacker to disclose information. The NVD-derived CVSSv3.1 base score is 5.5 (Medium) with LOCAL, LOW complexity, and...

5.5CVSS6.1AI score0.00122EPSS
CVE
CVE
added 2026/01/23 9:34 a.m.25 views

CVE-2026-22275

Dell ECS (versions 3.8.1.0–3.8.1.7) and Dell ObjectScale (versions prior to 4.2.0.0) have an Inclusion of Sensitive Information in Source Code vulnerability. A low-privileged attacker with local access could exploit this to expose information. CVSSv3.1 base score 4.4 (AV:L/AC:L/PR:L/UI:N/S:U/C:L/...

4.4CVSS5.5AI score0.00128EPSS
CVE
CVE
added 2026/01/23 9:14 a.m.24 views

CVE-2026-22273

Dell ECS (versions 3.8.1.0–3.8.1.7) and Dell ObjectScale (versions prior to 4.2.0.0) contain a Use of Default Credentials vulnerability in the OS. A low-privileged, remote attacker could potentially exploit this to achieve Elevation of Privileges. Remediation: upgrade Dell ECS to a newer version ...

8.8CVSS5.5AI score0.00332EPSS
CVE
CVE
added 2026/05/11 9:27 a.m.21 views

CVE-2025-43992

CVE-2025-43992 affects Dell EMC: Dell ECS versions 3.8.1.0–3.8.1.7 and Dell ObjectScale versions before 4.3.0.0. The issue is an authentication bypass via assumed-immutable data in Geo replication, allowing an unauthenticated attacker with remote access to potentially access data in transit. The ...

5.6CVSS5.8AI score0.00235EPSS
CVE
CVE
added 2026/05/11 9:33 a.m.20 views

CVE-2026-35157

Dell ECS 3.8.1.0–3.8.1.7 and Dell ObjectScale

9.8CVSS5.9AI score0.00317EPSS
CVE
CVE
added 2026/01/23 9:25 a.m.19 views

CVE-2026-22274

CVE-2026-22274 affects Dell EMC/Dell ObjectScale: Dell ECS versions 3.8.1.0–3.8.1.7 and Dell ObjectScale prior to 4.2.0.0 contain a Cleartext Transmission of Sensitive Information vulnerability in the Fabric Syslog. An unauthenticated remote attacker could intercept and modify information in tran...

6.5CVSS5.6AI score0.0016EPSS
CVE
CVE
added 2026/01/23 8:54 a.m.18 views

CVE-2026-22271

CVE-2026-22271 affects Dell ECS (versions 3.8.1.0–3.8.1.7) and Dell ObjectScale (versions prior to 4.2.0.0). The issue is cleartext transmission of sensitive information accessible via remote, unauthenticated access, potentially exposing data. Exploitation appears to be network-based with high im...

7.5CVSS5.5AI score0.00192EPSS
CVE
CVE
added 2026/01/23 9:42 a.m.18 views

CVE-2026-22276

CVE-2026-22276 affects Dell ECS (versions 3.8.1.0–3.8.1.7) and Dell ObjectScale (versions before 4.2.0.0). The issue is a Cleartext Storage of Sensitive Information vulnerability that can lead to information disclosure. Exploitation is described as possible by a low-privileged attacker with local...

5.5CVSS5.4AI score0.00094EPSS
CVE
CVE
added 2026/05/11 9:39 a.m.18 views

CVE-2026-26946

CVE-2026-26946 affects Dell EMC ECS (versions 3.8.1.0–3.8.1.7) and Dell ObjectScale (prior to 4.3.0.0). The issue is an improper privilege management vulnerability in the operating system. A high-privileged attacker with local access could potentially exploit this to achieve elevation of privileg...

6.7CVSS5.8AI score0.00104EPSS
CVE
CVE
added 2026/05/11 8:57 a.m.18 views

CVE-2026-40636

Dell ECS (3.8.1.0–3.8.1.7) and Dell ObjectScale versions before 4.3.0.0 contain a hard-coded credential issue. An unauthenticated, locally-accessible attacker could potentially obtain filesystem access. CVSS 3.1 base score 9.8 (CRITICAL) indicates high impact on confidentiality, integrity, and av...

9.8CVSS5.8AI score0.00223EPSS
CVE
CVE
added 2026/04/08 12:43 p.m.15 views

CVE-2026-28261

CVE-2026-28261 affects Dell Elastic Cloud Storage (DE) 3.8.1.7 and earlier and Dell ObjectScale: affected ObjectScale versions prior to 4.1.0.3 and 4.2.0.0. It is a local, low-privilege accessible vulnerability that can cause insertion of sensitive information into log files, potentially exposing...

7.8CVSS5.8AI score0.00107EPSS