Описание
Dell ECS, versions prior to 3.8.1.3 contains an arithmetic overflow vulnerability exists in retention period handling of ECS. An authenticated user with bucket or object-level access and the necessary privileges could potentially exploit this vulnerability to bypass retention policies and delete objects.
Уязвимые конфигурации
Конфигурация 1Версия до 3.8.1.3 (исключая)
cpe:2.3:a:dell:elastic_cloud_storage:*:*:*:*:*:*:*:*
EPSS
Процентиль: 19%
0.0006
Низкий
8.1 High
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-190
Связанные уязвимости
CVSS3: 8.1
github
около 1 года назад
Dell ECS, versions prior to 3.8.1.3 contains an arithmetic overflow vulnerability exists in retention period handling of ECS. An authenticated user with bucket or object-level access and the necessary privileges could potentially exploit this vulnerability to bypass retention policies and delete objects.
EPSS
Процентиль: 19%
0.0006
Низкий
8.1 High
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-190