Lucene search
DellCVE-2024-25970HistoryMay 14, 2024 - 4:16 p.m.
CVE-2024-25970
2024-05-1416:16:21
CWE-20
dell
web.nvd.nist.gov
32
dell powerscale onefs
vulnerability
input validation
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
9.0%
Dell PowerScale OneFS versions 8.2.x through 9.7.0.1 contains an improper input validation vulnerability. A low privileged remote attacker could potentially exploit this vulnerability, leading to loss of integrity.
Affected configurations
Node
dellpowerscale_onefsRange≤9.3.0.0
ORdellpowerscale_onefsRange≤9.4.0.17
ORdellpowerscale_onefsRange≤9.5.0.7
ORdellpowerscale_onefsRange≤9.7.0.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| dell | powerscale_onefs | * | cpe:2.3:a:dell:powerscale_onefs:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "PowerScale OneFS",
"vendor": "Dell",
"versions": [
{
"lessThanOrEqual": "9.3.0.0 ",
"status": "affected",
"version": "8.2.x",
"versionType": "semver"
},
{
"lessThanOrEqual": "9.4.0.17",
"status": "affected",
"version": "9.4.0.0",
"versionType": "semver"
},
{
"lessThanOrEqual": "9.5.0.7",
"status": "affected",
"version": "9.5.0.0",
"versionType": "semver"
},
{
"lessThanOrEqual": "9.7.0.1",
"status": "affected",
"version": "9.6.0.x",
"versionType": "semver"
}
]
}
]Related
nvd
nvd
CVE-2024-25970
2024-05-14 16:16:21
cvelist
cvelist
CVE-2024-25970
2024-05-14 06:53:56
vulnrichment
vulnrichment
CVE-2024-25970
2024-05-14 06:53:56
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
9.0%
Related for CVE-2024-25970