Dell ECS OS Privilege Escalation v3.8.1.0-3.8.1.7
CVE-2026-26946 Published on May 11, 2026

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an improper privilege management vulnerability in the OS. A high privileged attacker with local access could potentially exploit this vulnerability, leading to elevation of privileges.

Vendor Advisory NVD

Vulnerability Analysis

CVE-2026-26946 is exploitable with local system access, and requires user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.

Attack Vector:

LOCAL

Attack Complexity:

LOW

Privileges Required:

HIGH

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

HIGH

Integrity Impact:

HIGH

Availability Impact:

HIGH

Weakness Type

Improper Privilege Management

The software does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

Products Associated with CVE-2026-26946

Want to know whenever a new CVE is published for Dell Objectscale? stack.watch will email you.

Dell Objectscale

Affected Versions

Dell ECS:

Before 4.3.0.0 or later is affected.

Dell ObjectScale:

Before 4.3.0.0 or later is affected.

Dell ECS OS Privilege Escalation v3.8.1.0-3.8.1.7CVE-2026-26946 Published on May 11, 2026

Vulnerability Analysis

Weakness Type

Improper Privilege Management

Products Associated with CVE-2026-26946

Affected Versions

Dell ECS OS Privilege Escalation v3.8.1.0-3.8.1.7
CVE-2026-26946 Published on May 11, 2026