Hardcoded credentials in the Dell Compellent storage array service could enable attackers to take over enterprise VMware environments for any organizations running those two services in collaboration.

Dell Compellent reached its end of life in 2019, and holds less than a 1% share of the data storage market, according to Enlyft. However, organizations still using Dell storage integrated with VMware environments need be aware of CVE-2023-39250, a “high” impact vulnerability affecting these systems.