CVE-2024-22459 Information

Description

Dell ECS versions 3.6 through 3.6.2.5 and 3.7 through 3.7.0.6 and 3.8 through 3.8.0.4 versions contain an improper access control vulnerability. A remote high privileged attacker could potentially exploit this vulnerability leading to unauthorized access to all buckets and their data within a namespace

Reference

https://www.dell.com/support/kbdoc/en-us/000222470/dsa-2024-078-security-update-for-dell-ecs-access-control-vulnerability