CVE-2026-35157

CVSS v3.1

5.8

Medium

Vector

AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:L

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an improper neutralization of formula elements in a CSV File vulnerability in the UI. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to remote execution.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1236

Related Identifiers

CVE-2026-35157

Affected Products

Ecs

Objectscale

CVE-2026-35157

Weakness Enumeration

Related Identifiers

Affected Products

References · 2