Medium severity5.9NVD Advisory· Published May 22, 2026· Updated May 22, 2026
CVE-2022-31231
CVE-2022-31231
Description
Dell ECS, versions 3.5 and 3.6, contain an Improper Access Control in the Identity and Access Management (IAM) module. A remote unauthenticated attacker may potentially exploit this vulnerability, leading to gaining read access to unauthorized data.
Affected products
2Patches
Vulnerability mechanics
References
1News mentions
1- Dell Discloses 13 CVEs Across PowerFlex, ECS, VxRail, and MoreVypr Intelligence · May 22, 2026