VYPR

Powerscale Onefs

by Dell

CVEs (178)

  • CVE-2023-32487Aug 16, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS, 8.2.x - 9.5.0.x, contains an elevation of privilege vulnerability. A low privileged local attacker could potentially exploit this vulnerability, leading to denial of service, code execution and information disclosure.

  • CVE-2023-32486Aug 16, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS 9.5.x version contain a privilege escalation vulnerability. A low privilege local attacker could potentially exploit this vulnerability, leading to escalation of privileges.

  • CVE-2023-32495Aug 16, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS, 8.2.x-9.5.x, contains a exposure of sensitive information to an unauthorized Actor vulnerability. An authorized local attacker could potentially exploit this vulnerability, leading to escalation of privileges.

  • CVE-2023-32494Aug 16, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS, 8.0.x-9.5.x, contains an improper handling of insufficient privileges vulnerability. A local privileged attacker could potentially exploit this vulnerability, leading to elevation of privilege and affect in compliance mode also.

  • CVE-2023-25942Apr 4, 2023
    risk 0.00cvss epss 0.01

    Dell PowerScale OneFS versions 8.2.x-9.4.x contain an uncontrolled resource consumption vulnerability. A malicious network user with low privileges could potentially exploit this vulnerability in SMB, leading to a potential denial of service.

  • CVE-2023-25941Apr 4, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS versions 8.2.x-9.5.0.x contain an elevation of privilege vulnerability. A low-privileged local attacker could potentially exploit this vulnerability, leading to Denial of service, escalation of privileges, and information disclosure. This vulnerability…

  • CVE-2023-25940Apr 4, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS version 9.5.0.0 contains improper link resolution before file access vulnerability in isi_gather_info. A high privileged local attacker could potentially exploit this vulnerability, leading to system takeover and it breaks the compliance mode guarantees.

  • CVE-2023-25536Mar 2, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS 9.4.0.x contains exposure of sensitive information to an unauthorized actor. A malicious authenticated local user could potentially exploit this vulnerability in certificate management, leading to a potential system takeover.

  • CVE-2023-23689Feb 28, 2023
    risk 0.00cvss epss 0.01

    Dell PowerScale nodes A200, A2000, H400, H500, H600, H5600, F800, F810 integrated hardware management software contains an uncontrolled resource consumption vulnerability. This may allow an unauthenticated network host to impair built-in hardware management functionality and…

  • CVE-2023-25540Feb 28, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS 9.4.0.x contains an incorrect default permissions vulnerability. A local malicious user could potentially exploit this vulnerability to overwrite arbitrary files causing denial of service.

  • CVE-2022-34445Feb 10, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS, versions 8.2.x through 9.3.x contain a weak encoding for a password. A malicious local privileged attacker may potentially exploit this vulnerability, leading to information disclosure.

  • CVE-2022-34444Feb 10, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS, versions 9.2.0.x through 9.4.0.x contain an information vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability to cause data leak.

  • CVE-2022-33934Feb 10, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS, versions 8.2.x through 9.4.x contain multiple stored cross-site scripting vulnerabilities. A remote authenticated malicious user with high privileges may potentially exploit these vulnerabilities to store malicious HTML or JavaScript code through multiple…

  • CVE-2022-34454Feb 10, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS, versions 8.2.x-9.3.x, contain a heap-based buffer overflow. A local privileged malicious user could potentially exploit this vulnerability, leading to system takeover. This impacts compliance mode clusters.

  • CVE-2023-22575Feb 1, 2023
    risk 0.00cvss epss 0.01

    Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log file vulnerability in celog. A low privileges user could potentially exploit this vulnerability, leading to information disclosure and escalation of privileges.

  • CVE-2023-22573Feb 1, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS 9.0.0.x-9.4.0.x contain an insertion of sensitive information into log file vulnerability in cloudpool. A low privileged local attacker could potentially exploit this vulnerability, leading to sensitive information disclosure.

  • CVE-2023-22574Feb 1, 2023
    risk 0.00cvss epss 0.01

    Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log file vulnerability in platform API of IPMI module. A low-privileged user with permission to read logs on the cluster could potentially exploit this vulnerability, leading to…

  • CVE-2023-22572Feb 1, 2023
    risk 0.00cvss epss 0.00

    Dell PowerScale OneFS 9.1.0.x-9.4.0.x contain an insertion of sensitive information into log file vulnerability in change password api. A low privilege local attacker could potentially exploit this vulnerability, leading to system takeover.

  • CVE-2022-46679Feb 1, 2023
    risk 0.00cvss epss 0.01

    Dell PowerScale OneFS 8.2.x, 9.0.0.x - 9.4.0.x, contain an insufficient resource pool vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to denial of service.

  • CVE-2022-45100Feb 1, 2023
    risk 0.00cvss epss 0.01

    Dell PowerScale OneFS, versions 8.2.x-9.3.x, contains an Improper Certificate Validation vulnerability. An remote unauthenticated attacker could potentially exploit this vulnerability, leading to a full compromise of the system.

Page 5 of 9