CVE-2025-43992 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	5.6 MEDIUM	NETWORK	HIGH	NONE	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: 24%

Common Weakness Enumeration

CWE-302 - Authentication Bypass by Assumed-Immutable Data
The authentication scheme or implementation uses key data elements that are assumed to be immutable, but can be controlled or modified by the attacker.

Vulnerability Media Exposure

[GERMAN] Dell ECS: Mehrere Schwachstellen
Ein Angreifer kann mehrere Schwachstellen in Dell ECS ausnutzen, um erweiterte Privilegien zu erlangen, beliebigen Code auszuführen und Sicherheitsmaßnahmen zu umgehen.
Published: 2026-05-11T22:00:00+00:00

References

https://www.dell.com/support/kbdoc/en-us/000462117/dsa-2026-047-security-update-for-dell-ecs-and-objectscale-multiple-vulnerabilities-1