Primary

Context

Dell ECS and ObjectScale Hard-Coded Credentials Vulnerability Allowing Filesystem Access

Vulnerability

Patched

A vulnerability exists in Dell ECS versions 3.8.1.0 to 3.8.1.7 and in Dell ObjectScale versions prior to 4.3.0.0, involving hard-coded credentials. This vulnerability could be exploited by an unauthenticated attacker with local access, potentially leading to unauthorized filesystem access.

Impact

Exploitation of this vulnerability could result in unauthorized access to the filesystem.

Remediation

Customers using affected versions of ECS or ObjectScale can upgrade to the latest ObjectScale release 4.3.0.0 or later. For ECS, the upgrade to ObjectScale 4.3.0.0 is recommended at the earliest opportunity. Consult the Dell ObjectScale 4.3.0.0 Security Configuration Guide for password change procedures if default credentials are still in use.

Added: May 11, 2026, 10:19 AM

Updated: May 11, 2026, 10:19 AM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

5.0

exploitability

4.9

remediation

7.9

relevance

8.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

5.0

exploitability

4.9

remediation

7.9

relevance

8.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell ECS and ObjectScale Hard-Coded Credentials Vulnerability Allowing Filesystem Access

Vulnerability

Impact

Remediation

Affected Products

Dell ECS

Dell ObjectScale

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating