CVE-2026-22279 – Dell PowerScale OneFS versions before 9.13.0.0 ... (How to Fix)

Q: What is the severity of CVE-2026-22279?

CVE-2026-22279 has a CVSS score of 4.3 (MEDIUM). Dell PowerScale OneFS versions before 9.13.0.0 have an insufficient logging vulnerability that allows unauthenticated remote attackers to potentially tamper with information. This affects organizations using vulnerable Dell PowerScale storage systems without proper logging controls.

📋 TL;DR

Dell PowerScale OneFS versions before 9.13.0.0 have an insufficient logging vulnerability that allows unauthenticated remote attackers to potentially tamper with information. This affects organizations using vulnerable Dell PowerScale storage systems without proper logging controls.

💻 Affected Systems

Products:

Dell PowerScale OneFS

Versions: All versions prior to 9.13.0.0

Operating Systems: OneFS (Dell's proprietary storage OS)

Default Config Vulnerable: ⚠️ Yes

Notes: All default configurations of affected versions are vulnerable. No special configuration required for exploitation.

📦 What is this software?

Powerscale Onefs by Dell

View all CVEs affecting Powerscale Onefs →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could tamper with system information or logs to hide malicious activity, potentially enabling further attacks without detection.

🟠

Likely Case

Limited information tampering that might disrupt audit trails or obscure unauthorized access attempts.

🟢

If Mitigated

Minimal impact if comprehensive monitoring and access controls are implemented alongside the patch.

🌐 Internet-Facing: MEDIUM - Remote unauthenticated access increases exposure, but impact is limited to information tampering rather than system compromise.

🏢 Internal Only: LOW - Internal network segmentation and access controls significantly reduce exploitability.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

The vulnerability requires remote access but no authentication, making it relatively easy to exploit if accessible.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 9.13.0.0 or later

Vendor Advisory: https://www.dell.com/support/kbdoc/en-us/000415586/dsa-2026-049-security-update-for-dell-powerscale-onefs-multiple-vulnerabilities

Restart Required: Yes

Instructions:

1. Download the OneFS 9.13.0.0 or later update from Dell Support. 2. Follow Dell's upgrade procedures for PowerScale clusters. 3. Apply the update to all nodes in the cluster. 4. Restart the cluster as required by the upgrade process.

🔧 Temporary Workarounds

Network Segmentation

all

Restrict network access to PowerScale management interfaces to trusted networks only.

Enhanced Logging Configuration

linux

Configure external syslog servers and implement log integrity monitoring to detect tampering attempts.

# Configure syslog forwarding in OneFS
isi syslog servers create --server <syslog_server> --port 514

🧯 If You Can't Patch

Implement strict network access controls to limit exposure to trusted IP addresses only.
Deploy additional security monitoring and log analysis tools to detect potential information tampering.

🔍 How to Verify

Check if Vulnerable:

Check the OneFS version via CLI: 'isi version' or through the web administration interface.

Check Version:

isi version

Verify Fix Applied:

Verify the version is 9.13.0.0 or higher using 'isi version' command.

📡 Detection & Monitoring

Log Indicators:

Unexpected log modifications or deletions
Log entries with inconsistent timestamps or missing expected events

Network Indicators:

Unauthorized access attempts to PowerScale management interfaces from untrusted sources

SIEM Query:

source="powerscale" AND (event_type="log_modification" OR event_type="access_denied")

📊 Metadata

CVE ID: CVE-2026-22279

CVSS v3 Score: 4.3 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

CWE: CWE-778

EPSS Score: 0.02% exploit probability (5.9th percentile)

Published: January 22, 2026

Last Updated: January 28, 2026

🔗 References

https://www.dell.com/support/kbdoc/en-us/000415586/dsa-2026-049-security-update-for-dell-powerscale-onefs-multiple-vulnerabilities Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2026-22279, you might also want to check these: