First published: Fri Apr 08 2022(Updated: )
Dell PowerScale OneFS, versions 8.2.x-9.3.x, contain a predictable seed in pseudo-random number generator. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to an account compromise.
Credit: security_alert@emc.com
Affected Software | Affected Version | How to fix |
---|---|---|
Dell EMC PowerScale OneFS | >=8.2.0<=9.3.0.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-26852 is a vulnerability found in Dell PowerScale OneFS versions 8.2.x-9.3.x that contains a predictable seed in the pseudo-random number generator.
CVE-2022-26852 can be exploited by a remote unauthenticated attacker, potentially leading to an account compromise on Dell PowerScale OneFS.
CVE-2022-26852 has a severity rating of 9.8 (Critical).
To fix CVE-2022-26852, users should apply the security update provided by Dell EMC for PowerScale OneFS.
More information about CVE-2022-26852 can be found on the Dell EMC support website.