Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
DellPowerscale Onefs

16 matches found

CVE
CVEadded 2022/04/08 8:15 p.m.79 views

CVE-2022-24428

Dell PowerScale OneFS, versions 8.2.x, 9.0.0.x, 9.1.0.x, 9.2.0.x, 9.2.1.x, and 9.3.0.x, contain an improper preservation of privileges. A remote filesystem user with a local account could potentially exploit this vulnerability, leading to an escalation of file privileges and information disclosure.

8.8CVSS8.4AI score0.00319EPSS
CVE
CVEadded 2021/08/16 10:15 p.m.73 views

CVE-2021-36278

Dell EMC PowerScale OneFS versions 8.2.x, 9.1.0.x, and 9.1.1.1 contain a sensitive information exposure vulnerability in log files. A local malicious user with ISI_PRIV_LOGIN_SSH, ISI_PRIV_LOGIN_CONSOLE, or ISI_PRIV_SYS_SUPPORT privileges may exploit this vulnerability to access sensitive informati...

8.1CVSS5.2AI score0.00187EPSS
CVE
CVEadded 2021/08/16 10:15 p.m.62 views

CVE-2021-36281

Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment vulnerability. A low privileged authenticated user can potentially exploit this vulnerability to escalate privileges.

8.8CVSS8.5AI score0.00396EPSS
CVE
CVEadded 2021/08/16 10:15 p.m.59 views

CVE-2021-21594

Dell PowerScale OneFS versions 8.2.2 - 9.1.0.x contain a use of get request method with sensitive query strings vulnerability. It can lead to potential disclosure of sensitive data. Dell recommends upgrading at your earliest opportunity.

8.2CVSS5.1AI score0.00257EPSS
CVE
CVEadded 2022/06/01 3:15 p.m.55 views

CVE-2022-29098

Dell PowerScale OneFS versions 8.2.0.x through 9.3.0.x, contain a weak password requirement vulnerability. An administrator may create an account with no password. A remote attacker may potentially exploit this leading to a user account compromise.

8.1CVSS7.5AI score0.0026EPSS
CVE
CVEadded 2022/04/12 6:15 p.m.52 views

CVE-2022-22549

Dell PowerScale OneFS, 8.2.x-9.3.x, contains a Improper Certificate Validation. A unauthenticated remote attacker could potentially exploit this vulnerability, leading to a man-in-the-middle capture of administrative credentials.

8.1CVSS7.8AI score0.00354EPSS
CVE
CVEadded 2021/07/28 12:15 a.m.50 views

CVE-2020-26180

Dell EMC Isilon OneFS supported versions 8.1 and later and Dell EMC PowerScale OneFS supported version 9.0.0 contain an access issue with the remotesupport user account. A remote malicious user with low privileges may gain access to data stored on the /ifs directory through most protocols.

8.8CVSS8.6AI score0.00319EPSS
CVE
CVEadded 2021/08/03 12:15 a.m.45 views

CVE-2021-21553

Dell PowerScale OneFS versions 8.1.0-9.1.0 contain an Incorrect User Management vulnerability.under some specific conditions, this can allow the CompAdmin user to elevate privileges and break out of Compliance mode. This is a critical vulnerability and Dell recommends upgrading at the earliest.

8.8CVSS8.6AI score0.00033EPSS
CVE
CVEadded 2023/02/01 2:15 p.m.45 views

CVE-2023-22574

Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log file vulnerability in platform API of IPMI module. A low-privileged user with permission to read logs on the cluster could potentially exploit this vulnerability, leading to Information disclosure and den...

8.1CVSS7.7AI score0.00256EPSS
CVE
CVEadded 2023/02/01 2:15 p.m.42 views

CVE-2023-22575

Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log file vulnerability in celog. A low privileges user could potentially exploit this vulnerability, leading to information disclosure and escalation of privileges.

8.8CVSS8.4AI score0.00228EPSS
CVE
CVEadded 2022/09/02 6:15 p.m.39 views

CVE-2022-34369

Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.20, 9.2.1.13, 9.3.0.6, and 9.4.0.3 , contain an insertion of sensitive information in log files vulnerability. A remote unprivileged attacker could potentially exploit this vulnerability, leading to exposure of this sensitive data.

8.1CVSS7.3AI score0.0033EPSS
CVE
CVEadded 2021/03/08 10:15 p.m.37 views

CVE-2021-21506

PowerScale OneFS 8.1.2,8.2.2 and 9.1.0 contains an improper input sanitization issue in its API handler. An un-authtenticated with ISI_PRIV_SYS_SUPPORT and ISI_PRIV_LOGIN_PAPI privileges could potentially exploit this vulnerability, leading to potential privileges escalation.

8.8CVSS8.6AI score0.00525EPSS
CVE
CVEadded 2024/06/04 1:15 p.m.37 views

CVE-2024-29170

Dell PowerScale OneFS versions 8.2.x through 9.8.0.x contain a use of hard coded credentials vulnerability. An adjacent network unauthenticated attacker could potentially exploit this vulnerability, leading to information disclosure of network traffic and denial of service.

8.1CVSS7AI score0.00302EPSS
CVE
CVEadded 2023/08/29 8:15 a.m.34 views

CVE-2023-32457

Dell PowerScale OneFS, versions 8.2.2.x-9.5.0.x, contains an improper privilege management vulnerability. A remote attacker with low privileges could potentially exploit this vulnerability, leading to escalation of privileges.

8.8CVSS8.8AI score0.00618EPSS
CVE
CVEadded 2023/02/01 5:15 a.m.32 views

CVE-2022-45097

Dell PowerScale OneFS 9.0.0.x-9.4.0.x contains an Incorrect User Management vulnerability. A low privileged network attacker could potentially exploit this vulnerability, leading to escalation of privileges, and information disclosure.

8.8CVSS8.6AI score0.00108EPSS
CVE
CVEadded 2023/12/05 6:15 a.m.32 views

CVE-2023-44295

Dell PowerScale OneFS versions 8.2.2.x through 9.6.0.x contains an improper control of a resource through its lifetime vulnerability. A low privilege attacker could potentially exploit this vulnerability, leading to loss of information, and information disclosure.

8.1CVSS7.9AI score0.00083EPSS