📦 Powerscale Onefs

Dell PowerScale OneFS versions 9.5.0.0 through 9.10.0.1 have a critical missing authorization vulnerability in NFS export. Unauthenticated remote attackers can potentially read, modify, and delete arb...

Dell PowerScale OneFS versions 9.5.0.0 through 9.10.1.0 contain a default password vulnerability that allows unauthenticated remote attackers to take over high-privileged user accounts. This affects a...

Dell PowerScale OneFS versions 8.2.x through 9.3.0.x contain an error message that leaks sensitive information. This vulnerability allows administrators to potentially access sensitive resources they ...

Dell PowerScale OneFS versions before 9.13.0.0 have a vulnerability where attackers can bypass authentication rate limiting. Unauthenticated remote attackers could brute-force credentials to gain unau...

Dell PowerScale OneFS versions 9.4.0.0 through 9.9.0.0 contain an uncontrolled resource consumption vulnerability. A remote unauthenticated attacker can exploit this to cause denial of service by exha...

Dell PowerScale OneFS versions 9.4.0.0 through 9.10.0.1 contain an incorrect authorization vulnerability. An unauthenticated attacker with local access could exploit this to gain cluster access using ...

Dell PowerScale OneFS versions 8.2.2.x through 9.7.0.x transmit sensitive information in cleartext, allowing a local low-privileged attacker to intercept this data and potentially escalate privileges....

Dell PowerScale OneFS versions 9.4.0.x through 9.7.0.x log sensitive information that could be accessed by local low-privileged users. This vulnerability allows attackers to read confidential data fro...

Dell PowerScale OneFS versions 8.2.2.x through 9.6.0.x contain an improper resource lifetime control vulnerability. An unauthenticated network attacker can exploit this to cause denial of service. Org...

Dell PowerScale OneFS versions 8.2.2.x through 9.5.0.x contain an improper privilege management vulnerability. A remote attacker with low privileges could exploit this to escalate their privileges on ...

Dell PowerScale OneFS versions 8.2.x through 9.5.0.x contain a local privilege escalation vulnerability. A low-privileged local attacker could exploit this to gain elevated privileges, potentially lea...

Dell PowerScale OneFS versions 9.5.0.x contain a protection mechanism bypass vulnerability that allows unprivileged remote attackers to potentially execute arbitrary code, cause denial of service, or ...

Dell PowerScale OneFS versions 8.2.x through 9.2.x contain a broken or risky cryptographic algorithm vulnerability. A remote unprivileged attacker could exploit this to gain full system access. This a...

This vulnerability allows authenticated users with SSH or console login privileges on Dell PowerScale OneFS systems to elevate their privileges beyond intended levels. It affects Dell PowerScale OneFS...

Dell PowerScale OneFS versions 8.1.0 through 9.1.0 contain an incorrect user management vulnerability that allows CompAdmin users to elevate privileges and break out of Compliance mode under specific ...

Dell PowerScale OneFS version 9.13.0.0 has an overly restrictive account lockout mechanism that allows unauthenticated remote attackers to trigger account lockouts, potentially causing denial of servi...

Dell PowerScale OneFS has an incorrect default permissions vulnerability that allows high-privileged local attackers to execute arbitrary code, cause denial of service, escalate privileges, or access ...

Dell PowerScale OneFS contains an incorrect privilege assignment vulnerability that allows local low-privileged attackers to elevate their privileges. This affects versions prior to 9.10.1.6 and versi...

Dell PowerScale OneFS contains an uncontrolled search path vulnerability that allows high-privileged local attackers to execute arbitrary code by manipulating the search path. This affects Dell PowerS...

Dell PowerScale OneFS contains a privilege escalation vulnerability where high-privileged local attackers can execute code with unnecessary privileges. This affects Dell PowerScale OneFS versions prio...

Dell PowerScale OneFS contains an incorrect permission assignment vulnerability that allows low-privileged local attackers to cause denial of service. This affects multiple versions of Dell PowerScale...

Dell PowerScale OneFS versions before 9.13.0.0 have an insufficient logging vulnerability that allows unauthenticated remote attackers to potentially tamper with information. This affects organization...

Dell PowerScale OneFS contains a broken cryptographic algorithm vulnerability that allows unauthenticated remote attackers to potentially access sensitive information. This affects OneFS versions prio...

This vulnerability allows a high-privileged attacker with local access to bypass authorization controls in Dell PowerScale OneFS, potentially gaining unauthorized access to NFSv4 or SMB shares. It aff...

Dell PowerScale OneFS versions 9.5.0.0 through 9.11.0.0 contain an information disclosure vulnerability where unauthenticated remote attackers can access sensitive information. This affects Dell Power...

Dell PowerScale OneFS versions before 9.12.0.0 have a privilege escalation vulnerability where a high-privileged local attacker can gain additional system privileges. This affects organizations using ...

Dell PowerScale OneFS versions before 9.11.0.0 use broken or risky cryptographic algorithms, allowing high-privileged remote attackers to potentially decrypt sensitive information. This affects organi...

This CVE describes an SQL injection vulnerability in Dell PowerScale OneFS storage systems. A low-privileged attacker with local access could execute arbitrary SQL commands, potentially leading to den...

A TOCTOU race condition vulnerability in Dell PowerScale OneFS allows unauthenticated attackers with local access to cause denial of service or tamper with information. This affects Dell PowerScale On...

Dell PowerScale OneFS versions 9.5.0.0 through 9.10.0.0 contain an uncontrolled resource consumption vulnerability. An unauthenticated remote attacker could exploit this to cause denial of service by ...

Dell PowerScale OneFS versions 8.2.2.x through 9.9.0.0 contain an uncontrolled resource consumption vulnerability that allows remote low-privileged attackers to cause denial of service. This affects D...

Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.x have incorrect permissions on critical system resources. A local authenticated attacker could exploit this to cause denial of service by disrupti...

Dell PowerScale OneFS versions 8.2.2.x through 9.9.0.x contain an incorrect argument specification vulnerability that allows remote low-privileged legitimate users to potentially exploit it for inform...

Dell PowerScale OneFS versions 9.5.0.x through 9.8.0.x contain an uncontrolled resource consumption vulnerability. A low-privilege remote attacker could exploit this to cause denial of service by exha...

Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an incorrect privilege assignment vulnerability. A local high-privileged attacker could exploit this to escalate privileges to root-level...

Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an incorrect privilege assignment vulnerability. A high-privileged attacker with local access could exploit this to cause denial of servi...

Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management vulnerability that allows a local high-privileged attacker to escalate to root-level access. This affect...

Dell PowerScale OneFS versions 8.2.2.x through 9.7.0.0 use broken or risky cryptographic algorithms, allowing unprivileged network attackers to potentially exploit this vulnerability to cause data lea...

Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management vulnerability that allows a local high-privilege attacker to escalate privileges. This affects organizat...

Dell PowerScale OneFS versions 8.2.x through 9.7.0.1 contain a resource allocation vulnerability where an attacker can cause denial of service by exhausting system resources. This affects local unauth...

This CVE describes a privilege escalation vulnerability in Dell PowerScale OneFS where local high-privileged users can execute commands with unnecessary elevated privileges. The vulnerability affects ...

Dell PowerScale OneFS versions 8.2.x through 9.7.0.2 contain a path traversal vulnerability where an attacker with local high privileges can control file names or paths. This could allow a malicious i...

Dell PowerScale OneFS contains a UNIX symbolic link following vulnerability that allows local high-privileged attackers to manipulate symbolic links to cause denial of service or tamper with informati...

Dell PowerScale OneFS versions 9.5.0.x through 9.7.0.x have an insufficient session expiration vulnerability that allows remote unauthenticated attackers to cause denial of service. This affects all s...

Dell PowerScale OneFS versions 9.5.0.x through 9.7.0.x contain a covert timing channel vulnerability that allows remote unauthenticated attackers to potentially cause denial of service. This affects D...

A Time-of-check Time-of-use (TOCTOU) race condition vulnerability in Dell PowerScale OneFS allows low-privileged attackers with adjacent network access to potentially cause denial of service. This aff...