CVE-2025-43724 – This vulnerability allows a high-privileged att... (How to Fix)

Q: What is the severity of CVE-2025-43724?

CVE-2025-43724 has a CVSS score of 4.4 (MEDIUM). This vulnerability allows a high-privileged attacker with local access to bypass authorization controls in Dell PowerScale OneFS, potentially gaining unauthorized access to NFSv4 or SMB shares. It affects Dell PowerScale OneFS versions prior to 9.12.0.0, putting organizations using these systems at risk of data exposure.

📋 TL;DR

This vulnerability allows a high-privileged attacker with local access to bypass authorization controls in Dell PowerScale OneFS, potentially gaining unauthorized access to NFSv4 or SMB shares. It affects Dell PowerScale OneFS versions prior to 9.12.0.0, putting organizations using these systems at risk of data exposure.

💻 Affected Systems

Products:

Dell PowerScale OneFS

Versions: Versions prior to 9.12.0.0

Operating Systems: Dell PowerScale OneFS operating system

Default Config Vulnerable: ⚠️ Yes

Notes: The vulnerability requires a high-privileged attacker with local access; default configurations are vulnerable if such access is obtained.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

An attacker could access sensitive data on NFSv4 or SMB shares, leading to data theft, manipulation, or disruption of critical storage operations.

🟠

Likely Case

A malicious insider or compromised high-privileged account exploits the vulnerability to access unauthorized shares, resulting in data leakage or integrity issues.

🟢

If Mitigated

With strict access controls and monitoring, impact is limited to minor unauthorized access attempts that are quickly detected and contained.

🌐 Internet-Facing: LOW, as exploitation requires local access to the system, making remote attacks unlikely without prior compromise.

🏢 Internal Only: HIGH, because the vulnerability is exploitable by high-privileged insiders or attackers who have gained local access through other means.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires high privileges and local access, making it moderately complex but feasible for skilled attackers or insiders.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 9.12.0.0 or later

Vendor Advisory: https://www.dell.com/support/kbdoc/en-us/000376214/dsa-2025-347-security-update-for-dell-powerscale-onefs-multiple-vulnerabilities

Restart Required: No

Instructions:

1. Review the Dell advisory for details. 2. Upgrade Dell PowerScale OneFS to version 9.12.0.0 or later. 3. Follow Dell's update procedures, which typically involve applying the patch through the management interface without requiring a restart.

🔧 Temporary Workarounds

Restrict Local Access

all

Limit local access to high-privileged accounts and implement strict authentication controls to reduce attack surface.

🧯 If You Can't Patch

Implement network segmentation to isolate Dell PowerScale systems from untrusted networks.
Enhance monitoring and logging for unauthorized access attempts to NFSv4 and SMB shares.

🔍 How to Verify

Check if Vulnerable:

Check the Dell PowerScale OneFS version via the management interface or CLI; if it is below 9.12.0.0, the system is vulnerable.

Check Version:

isi version

Verify Fix Applied:

After patching, confirm the version is 9.12.0.0 or higher using the same method.

📡 Detection & Monitoring

Log Indicators:

Unusual access patterns to NFSv4 or SMB shares by high-privileged users
Failed authorization attempts followed by successful access

Network Indicators:

Anomalous traffic to NFSv4 or SMB ports from internal sources

SIEM Query:

source="Dell PowerScale" AND (event_type="access_denied" OR event_type="unauthorized_access")

📊 Metadata

CVE ID: CVE-2025-43724

CVSS v3 Score: 4.4 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-639

EPSS Score: 0.02% exploit probability (5.4th percentile)

Published: October 8, 2025

Last Updated: February 20, 2026

🔗 References

https://www.dell.com/support/kbdoc/en-us/000376214/dsa-2025-347-security-update-for-dell-powerscale-onefs-multiple-vulnerabilities Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-43724, you might also want to check these:

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Powerscale Onefs by Dell

Powerscale Onefs by Dell

Powerscale Onefs by Dell

Powerscale Onefs by Dell

⚠️ Risk & Real-World Impact

Worst Case

Likely Case

If Mitigated

🎯 Exploit Status

🛠️ Fix & Mitigation

✅ Official Fix

Instructions:

🔧 Temporary Workarounds

Restrict Local Access

🧯 If You Can't Patch

🔍 How to Verify

Check if Vulnerable:

Check Version:

Verify Fix Applied:

📡 Detection & Monitoring

Log Indicators:

Network Indicators:

SIEM Query:

📊 Metadata

🔗 References

📤 Share & Export

🔗 Related Vulnerabilities