CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-11052

Dell EMC ECS versions 3.2.0.0 and 3.2.0.1 contain an authentication bypass vulnerability. A remote unauthenticated attacker could exploit this vulnerability to read and modify S3 objects by supplying specially crafted S3 requests.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.037

EPSS Ranking 87.9%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

http://seclists.org/fulldisclosure/2018/Jul/1
http://www.securityfocus.com/bid/104660
http://seclists.org/fulldisclosure/2018/Jul/1
http://www.securityfocus.com/bid/104660

Products affected by CVE-2018-11052

Dellemc » Elastic Cloud Storage » Version: 3.2.0.0

cpe:2.3:a:dellemc:elastic_cloud_storage:3.2.0.0
Dellemc » Elastic Cloud Storage » Version: 3.2.0.1

cpe:2.3:a:dellemc:elastic_cloud_storage:3.2.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-11052

Products

Pricing

Contact Us