Lucene search
DellCVE-2023-32489HistoryAug 16, 2023 - 2:15 p.m.
CVE-2023-32489
2023-08-1614:15:11
CWE-280
dell
web.nvd.nist.gov
18
dell
powerscale
onefs
8.2x
9.5x
privilege escalation
vulnerability
nvd
CVSS3
6.7
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
5.1%
Dell PowerScale OneFS 8.2x -9.5x contains a privilege escalation vulnerability. A local attacker with high privileges could potentially exploit this vulnerability, to bypass mode protections and gain elevated privileges.
Affected configurations
Node
dellpowerscale_onefsRange9.2.1.0–9.2.1.22
ORdellpowerscale_onefsRange9.4.0.0–9.4.0.13
ORdellpowerscale_onefsRange9.5.0.0–9.5.0.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| dell | powerscale_onefs | * | cpe:2.3:a:dell:powerscale_onefs:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "PowerScale OneFS",
"vendor": "Dell",
"versions": [
{
"status": "affected",
"version": "Version 9.2.1.0 through 9.2.1.22, Version 9.4.0.0 through 9.4.0.13, Version 9.5.0.0 through 9.5.0.3"
}
]
}
]Related
nvd
nvd
CVE-2023-32489
2023-08-16 14:15:11
cnvd
cnvd
Dell PowerScale OneFS elevation of privilege vulnerability (CNVD-2023-65218)
2023-08-18 00:00:00
prion
prion
Privilege escalation
2023-08-16 14:15:00
cvelist
cvelist
CVE-2023-32489
2023-08-16 13:36:27
CVSS3
6.7
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
5.1%
Related for CVE-2023-32489