CVE-2026-40636

>= 3.8.1.0 and < 4.3.0.0

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains a use of hard-coded credential

9.8CRITICAL

CVE-2026-35157

>= 3.8.1.0 and < 4.3.0.0

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an improper neutralization of f

5.8MEDIUM

CVE-2026-26946

>= 3.8.1.0 and < 4.3.0.0

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an improper privilege manageme

6.7MEDIUM

CVE-2025-43992

>= 3.8.1.0 and < 4.3.0.0

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an authentication bypass by ass

5.6MEDIUM

CVE-2026-28261

< 4.2.0.1

Dell Elastic Cloud Storage, version 3.8.1.7 and prior, and Dell ObjectScale, versions prior to 4.1.0.3 and version 4.2.0.0, conta

7.8HIGH

CVE-2026-22276

>= 3.8.1.0 and < 4.2.0.0

Dell ECS, versions 3.8.1.0 through 3.8.1.7, and Dell ObjectScale versions prior to 4.2.0.0, contains a Cleartext Storage of Sensit

5.5MEDIUM

CVE-2026-22275

>= 3.8.1.0 and < 4.2.0.0

Dell ECS, versions 3.8.1.0 through 3.8.1.7, and Dell ObjectScale versions prior to 4.2.0.0, contains an Inclusion of Sensitive Inf

4.4MEDIUM

CVE-2026-22274

>= 3.8.1.0 and < 4.2.0.0

Dell ECS, versions 3.8.1.0 through 3.8.1.7, and Dell ObjectScale versions prior to 4.2.0.0, contains a Cleartext Transmission of S

6.5MEDIUM

CVE-2026-22273

>= 3.8.1.0 and < 4.2.0.0

Dell ECS, versions 3.8.1.0 through 3.8.1.7, and Dell ObjectScale versions prior to 4.2.0.0, contains an Use of Default Credentials

8.8HIGH

CVE-2026-22271

>= 3.8.1.0 and < 4.2.0.0

Dell ECS, versions 3.8.1.0 through 3.8.1.7, and Dell ObjectScale versions prior to 4.2.0.0, contains a Cleartext Transmission of S

7.5HIGH

CVE-2025-26476

< 3.8.1.5

Dell ECS versions prior to 3.8.1.5/ ObjectScale version 4.0.0.0, contain a Use of Hard-coded Cryptographic Key vulnerability. An u

8.4HIGH

CVE-2025-30483

< 3.8.1.5

Dell ECS versions prior to 3.8.1.5/ ObjectScale version 4.0.0.0 contains an Insertion of Sensitive Information into Log File vulne

5.5MEDIUM

CVE-2025-26478

<= 3.8.1.4

Dell ECS version 3.8.1.4 and prior contain an Improper Certificate Validation vulnerability. An unauthenticated attacker with adja

3.1LOW

CVE-2025-26477

<= 3.8.1.4

Dell ECS version 3.8.1.4 and prior contain an Improper Input Validation vulnerability. A low privileged attacker with remote acces

4.3MEDIUM

CVE-2024-51540

< 3.8.1.3

Dell ECS, versions prior to 3.8.1.3 contains an arithmetic overflow vulnerability exists in retention period handling of ECS. An a

8.1HIGH

CVE-2024-52534

< 3.8.1.3

Dell ECS, version(s) prior to ECS 3.8.1.3, contain(s) an Authentication Bypass by Capture-replay vulnerability. A low privileged a

5.4MEDIUM

CVE-2024-38485

< 3.8.0.0

Dell ECS, versions prior to 3.8.0, contain(s) a Host Header Injection Vulnerability. A remote low-privileged attacker could potent

4.3MEDIUM

CVE-2024-30473

< 3.8.1.1

Dell ECS, versions prior to 3.8.1, contain a privilege elevation vulnerability in user management. A remote high privileged attack

4.9MEDIUM

CVE-2024-22459

>= 3.6.0.0 and < 3.6.2.6

Dell ECS, versions 3.6 through 3.6.2.5, and 3.7 through 3.7.0.6, and 3.8 through 3.8.0.4 versions, contain an improper access cont

6.8MEDIUM

CVE-2023-25934

< 3.8.0.2

DELL ECS prior to 3.8.0.2 contains an improper verification of cryptographic signature vulnerability. A network attacker with an a

5.9MEDIUM

CVE-2018-11052

all versions

Dell EMC ECS versions 3.2.0.0 and 3.2.0.1 contain an authentication bypass vulnerability. A remote unauthenticated attacker could

9.8CRITICAL

CVE-2017-8021

<= 3.0

EMC Elastic Cloud Storage (ECS) before 3.1 is affected by an undocumented account vulnerability that could potentially be leverage

9.8CRITICAL