CVE-2025-26476

CVSS v3.1

8.4

High

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Dell ECS versions prior to 3.8.1.5 ObjectScale version 4.0.0.0

Description Dell ECS and ObjectScale contain a Use of Hard-coded Cryptographic Key issue. An unauthenticated attacker with local access could potentially gain Unauthorized access.

Recommendations Update Dell ECS to version 3.8.1.5 or later. Update ObjectScale to version 4.0.0.0 or later.

Fix

Using Hardcoded Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-798CWE-321

Related Identifiers

CVE-2025-26476

Affected Products

Dell Ecs

Objectscale

CVE-2025-26476

Weakness Enumeration

Related Identifiers

Affected Products

References · 5