Primary

Context

Dell ECS Improper Input Validation Vulnerability Leading to Code Execution

Vulnerability

A vulnerability allowing code execution through improper input validation has been identified in Dell ECS versions through 3.8.1.4. This issue can be exploited by a low-privileged attacker with remote access.

Impact

Exploitation of this vulnerability could lead to unauthorized code execution on the affected system.

Remediation

Users are advised to upgrade to Dell ObjectScale version 4.0 or later. Those on ECS 3.8.1.x and ECS 3.8.0.x can upgrade directly to OBS 4.0. Customers on versions prior to ECS 3.8.x must first upgrade to ECS 3.8.x before transitioning to OBS 4.0.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell ECS Improper Input Validation Vulnerability Leading to Code Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating