CVE-2026-26946 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	6.7 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 1%

Affected Products (NVD)

Vendor	Product	Version
dell	elastic_cloud_storage	3.8.1.0 ≤ 𝑥 < 4.3.0.0
dell	objectscale	𝑥 < 4.3.0.0

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-269 - Improper Privilege Management
The software does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

Vulnerability Media Exposure

[GERMAN] Dell ECS: Mehrere Schwachstellen
Ein Angreifer kann mehrere Schwachstellen in Dell ECS ausnutzen, um erweiterte Privilegien zu erlangen, beliebigen Code auszuführen und Sicherheitsmaßnahmen zu umgehen.
Published: 2026-05-11T22:00:00+00:00

References

https://www.dell.com/support/kbdoc/en-us/000462117/dsa-2026-047-security-update-for-dell-ecs-and-objectscale-multiple-vulnerabilities-1