Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dell emc powerscale onefs vulnerabilities and exploits
(subscribe to this query)
4.9
CVSSv2
CVE-2022-22560
Dell EMC PowerScale OneFS 8.1.x - 9.1.x contain hard coded credentials. This allows a local user with knowledge of the credentials to login as the admin user to the backend ethernet switch of a PowerScale cluster. The attacker can exploit this vulnerability to take the switch off...
Dell Emc Powerscale Onefs
4.6
CVSSv2
CVE-2022-22550
Dell PowerScale OneFS, versions 8.2.2 and above, contain a password disclosure vulnerability. An unprivileged local attacker could potentially exploit this vulnerability, leading to account take over.
Dell Emc Powerscale Onefs
4.6
CVSSv2
CVE-2022-24411
Dell PowerScale OneFS 8.2.2 and above contain an elevation of privilege vulnerability. A local attacker with ISI_PRIV_LOGIN_SSH and/or ISI_PRIV_LOGIN_CONSOLE could potentially exploit this vulnerability, leading to elevation of privilege. This could potentially allow users to cir...
Dell Emc Powerscale Onefs
4.6
CVSSv2
CVE-2021-21595
Dell EMC PowerScale OneFS versions 8.2.x - 9.1.1.x contain an improper neutralization of special elements used in an OS command. This vulnerability could allow the compadmin user to elevate privileges. This only impacts Smartlock WORM compliance mode clusters as a critical vulner...
Dell Emc Powerscale Onefs 8.2.2
Dell Emc Powerscale Onefs
4.6
CVSSv2
CVE-2021-21599
Dell EMC PowerScale OneFS versions 8.2.x - 9.2.1.x contain an OS command injection vulnerability. This may allow a user with ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE to escalate privileges and escape the compliance guarantees. This only impacts Smartlock WORM compliance mode ...
Dell Emc Powerscale Onefs 8.2.2
Dell Emc Powerscale Onefs
4.6
CVSSv2
CVE-2021-21503
PowerScale OneFS 8.1.2,8.2.2 and 9.1.0 contains an improper input sanitization issue in a command. The Compadmin user could potentially exploit this vulnerability, leading to potential privileges escalation.
Dell Emc Powerscale Onefs 8.1.2
Dell Emc Powerscale Onefs 8.2.2
Dell Emc Powerscale Onefs 9.1.0
4.6
CVSSv2
CVE-2020-26191
Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain a privilege escalation vulnerability. A user with ISI_PRIV_JOB_ENGINE may use the PermissionRepair job to grant themselves the highest level of RBAC privileges thus being able to read arbitrary data, tamper with system soft...
Dell Emc Powerscale Onefs 9.0.0
Dell Emc Powerscale Onefs 8.1.0
Dell Emc Powerscale Onefs 8.1.1
Dell Emc Powerscale Onefs 8.2.0
Dell Emc Powerscale Onefs 8.2.1
Dell Emc Powerscale Onefs 8.1.2
Dell Emc Powerscale Onefs 8.2.2
Dell Emc Powerscale Onefs 9.1.0
4.6
CVSSv2
CVE-2020-26192
Dell EMC PowerScale OneFS versions 8.2.0 - 9.1.0 contain a privilege escalation vulnerability. A non-admin user with either ISI_PRIV_LOGIN_CONSOLE or ISI_PRIV_LOGIN_SSH may potentially exploit this vulnerability to read arbitrary data, tamper with system software or deny service ...
Dell Emc Powerscale Onefs 9.0.0
Dell Emc Powerscale Onefs 8.2.0
Dell Emc Powerscale Onefs 8.2.1
Dell Emc Powerscale Onefs 8.2.2
Dell Emc Powerscale Onefs 9.1.0
4.6
CVSSv2
CVE-2020-26194
Dell EMC PowerScale OneFS versions 8.1.2 and 8.2.2 contain an Incorrect Permission Assignment for a Critical Resource vulnerability. This may allow a non-admin user with either ISI_PRIV_LOGIN_CONSOLE or ISI_PRIV_LOGIN_SSH privileges to exploit the vulnerability, leading to compro...
Dell Emc Powerscale Onefs 8.1.2
Dell Emc Powerscale Onefs 8.2.2
4
CVSSv2
CVE-2022-23159
Dell PowerScale OneFS, 8.2.2 - 9.3.0.x, contain a missing release of memory after effective lifetime vulnerability. An authenticated user with ISI_PRIV_LOGIN_SSH and/or ISI_PRIV_LOGIN_CONSOLE and ISI_PRIV_AUTH_PROVIDERS privileges could exploit this vulnerability, leading to a De...
Dell Emc Powerscale Onefs
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »