First published: Fri Oct 21 2022(Updated: )
Dell PowerScale OneFS, versions 8.2.x-9.4.0.x, contain a privilege context switching error. A local authenticated malicious user with high privileges could potentially exploit this vulnerability, leading to full system compromise. This impacts compliance mode clusters.
Credit: security_alert@emc.com
Affected Software | Affected Version | How to fix |
---|---|---|
Dell EMC PowerScale OneFS | >=9.1.0.0<=9.1.0.22 | |
Dell EMC PowerScale OneFS | >=9.2.1.0<=9.2.1.15 | |
Dell EMC PowerScale OneFS | >=9.3.0.0<=9.3.0.7 | |
Dell EMC PowerScale OneFS | >=9.4.0.0<=9.4.0.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this Dell PowerScale OneFS vulnerability is CVE-2022-34438.
The severity level of CVE-2022-34438 is medium with a CVSS score of 6.7.
This vulnerability can be exploited by a local authenticated malicious user with high privileges, potentially leading to full system compromise.
Dell PowerScale OneFS versions 8.2.x-9.4.0.x are affected by this vulnerability.
To fix CVE-2022-34438, apply the security update provided by Dell EMC PowerScale OneFS.