CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-40636

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains a use of hard-coded credentials vulnerability. An unauthenticated attacker with local access could potentially exploit this vulnerability, leading to filesystem access for attacker.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.5%

CVSS Severity

CVSS v3 Score 9.8

References

https://www.dell.com/support/kbdoc/en-us/000462117/dsa-2026-047-security-update-for-dell-ecs-and-objectscale-multiple-vulnerabilities-1

Products affected by CVE-2026-40636

Dell » Elastic Cloud Storage » Version: 3.8.1.0

cpe:2.3:a:dell:elastic_cloud_storage:3.8.1.0
Dell » Elastic Cloud Storage » Version: 3.8.1.1

cpe:2.3:a:dell:elastic_cloud_storage:3.8.1.1
Dell » Elastic Cloud Storage » Version: 3.8.1.2

cpe:2.3:a:dell:elastic_cloud_storage:3.8.1.2
Dell » Elastic Cloud Storage » Version: 3.8.1.3

cpe:2.3:a:dell:elastic_cloud_storage:3.8.1.3
Dell » Elastic Cloud Storage » Version: 3.8.1.4

cpe:2.3:a:dell:elastic_cloud_storage:3.8.1.4
Dell » Elastic Cloud Storage » Version: 3.8.1.5

cpe:2.3:a:dell:elastic_cloud_storage:3.8.1.5
Dell » Elastic Cloud Storage » Version: 3.8.1.6

cpe:2.3:a:dell:elastic_cloud_storage:3.8.1.6
Dell » Objectscale » Version: Any

cpe:2.3:a:dell:objectscale:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-40636

Products

Pricing

Contact Us