Primary

Context

Dell ECS Improper Access Control Vulnerability in Identity and Access Management Module

Vulnerability

Patched

A vulnerability allowing improper access control has been identified in the Identity and Access Management (IAM) module of Dell ECS versions 3.5 and 3.6. This vulnerability could be exploited by a remote, unauthenticated attacker to gain unauthorized read access to sensitive data.

Impact

Exploitation of this vulnerability could result in unauthorized read access to data.

Added: May 26, 2026, 3:55 PM

Updated: May 26, 2026, 3:55 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

7.0

remediation

7.7

relevance

9.1

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

7.0

remediation

7.7

relevance

9.1

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell ECS Improper Access Control Vulnerability in Identity and Access Management Module

Vulnerability

Impact

Affected Products

Dell ECS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating