Overview
- Description
- Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0.2, contain an unprotected primary channel vulnerability. An unauthenticated network malicious attacker may potentially exploit this vulnerability, leading to a denial of filesystem services.
- Source
- security_alert@emc.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 5.3
- Impact score
- 1.4
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
- Severity
- MEDIUM
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
- security_alert@emc.com
- CWE-419
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:dell:emc_powerscale_onefs:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C0A982E-C690-4103-B27D-F30C7B913D33",
"versionEndIncluding": "9.1.0.19",
"versionStartIncluding": "9.1.0.0"
},
{
"criteria": "cpe:2.3:o:dell:emc_powerscale_onefs:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C8C6C3D7-DEF8-4299-B2D9-CADFE9CF6FE6",
"versionEndIncluding": "9.2.1.12",
"versionStartIncluding": "9.2.1.0"
},
{
"criteria": "cpe:2.3:o:dell:emc_powerscale_onefs:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "59849B62-4A3A-4249-9FCF-8C076F94DA22",
"versionEndIncluding": "9.3.0.6",
"versionStartIncluding": "9.3.0.0"
},
{
"criteria": "cpe:2.3:o:dell:emc_powerscale_onefs:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D61851E6-186E-44BF-BB61-B48AF3A9D836",
"versionEndIncluding": "9.4.0.2",
"versionStartIncluding": "9.4.0.0"
}
],
"operator": "OR"
}
]
}
]