Zero Day MonitorZDM

← Back to list

EST

PRE-CVEPATCHED

dell · powerscale, elastic cloud storage (ecs), objectscale

Multiple Vulnerabilities in Dell PowerScale, Elastic Cloud Storage, and ObjectScale

72% confidence

Description

Multiple vulnerabilities affecting Dell PowerScale OneFS, Elastic Cloud Storage (ECS), and ObjectScale products. Users should update to fixed versions to mitigate these vulnerabilities.

Affected Products

Vendor	Product	Versions
dell	powerscale, elastic cloud storage (ecs), objectscale	PowerScale A300/A3000/H700/H7000 versions prior to 13.2.3, Elastic Cloud Storage (ECS) versions 3.8.1.0 to 3.8.1.7, ObjectScale versions prior to 4.3.0.0

Related News (1 articles)

Tier B

CCCS Canada5h ago

Dell security advisory (AV26-439)

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

Patch available

13.2.3 for PowerScale3.8.1.8 or later for ECS4.3.0.0 for ObjectScale

PublishedMay 11, 2026

Last enriched5h ago

Tags

multiple vulnerabilitiessecurity updatedell

Trending Score20

Source articles1

Independent1

Info Completeness6/14

Missing: cve_id, cvss, epss, cwe, kev, exploit, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

CRITICALCVE-2026-40636EXP

CVE-2026-40636: Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains a use of hard-coded c

HIGHCVE-2026-32658

CVE-2026-32658: Dell Automation Platform versions prior to 2.0.0.0, contains a missing authorization vulnerability. A low privileged att

MEDIUMCVE-2026-26946

CVE-2026-26946: Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an improper privilege

MEDIUMCVE-2025-43992

CVE-2025-43992: Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an authentication byp

MEDIUMCVE-2026-35157

CVE-2026-35157: Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an improper neutraliz

Pin to Dashboard

Verification

State: reported

Confidence: 72%

Vulnerability Timeline

CVE Published

May 11, 2026

Discovered by ZDM

May 11, 2026

Patch Available

May 11, 2026