CVE Catalog

CVE-2026-40636

Critical
Published: Translated: NVD NIST

Summary

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0 contain a use of hard-coded credentials vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerability, leading to filesystem access for the attacker.

Risk Assessment

The organization may be exposed to unauthorized access to data and system resources, potentially leading to serious security breaches.

Recommendation

It is recommended to update to the latest versions of Dell ECS and Dell ObjectScale to mitigate this vulnerability and conduct a security audit of the systems.

Original NVD description (English source)

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains a use of hard-coded credentials vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerability, leading to filesystem access for attacker.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS