CVE-2026-22274 | THREATINT

Description

Dell ECS, versions 3.8.1.0 through 3.8.1.7, and Dell ObjectScale versions prior to 4.2.0.0, contains a Cleartext Transmission of Sensitive Information vulnerability in the Fabric Syslog. An unauthenticated attacker with remote access could potentially exploit this vulnerability to intercept and modify information in transit.

PUBLISHED Reserved 2026-01-07 | Published 2026-01-23 | Updated 2026-01-23 | Assigner dell

MEDIUM: 6.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Problem types

CWE-319: Cleartext Transmission of Sensitive Information

Product status

Default status

unaffected

Any version before 4.2.0.0

affected

References

www.dell.com/...ecs-and-objectscale-multiple-vulnerabilities vendor-advisory

cve.org (CVE-2026-22274)

nvd.nist.gov (CVE-2026-22274)

Download JSON