First published: Tue Feb 28 2023(Updated: )
Dell PowerScale OneFS 9.4.0.x contains an incorrect default permissions vulnerability. A local malicious user could potentially exploit this vulnerability to overwrite arbitrary files causing denial of service.
Credit: security_alert@emc.com
Affected Software | Affected Version | How to fix |
---|---|---|
Dell EMC PowerScale OneFS | >=9.4.0.0<=9.4.0.11 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-25540 is a vulnerability found in Dell PowerScale OneFS 9.4.0.x that allows a local malicious user to overwrite arbitrary files causing denial of service.
CVE-2023-25540 has a high severity rating of 7.1, indicating that it can be exploited by a local malicious user to cause denial of service.
The affected software for CVE-2023-25540 is Dell PowerScale OneFS version 9.4.0.x.
A local malicious user can exploit the incorrect default permissions vulnerability in Dell PowerScale OneFS to overwrite arbitrary files, leading to denial of service.
Yes, Dell has released security updates for Dell PowerScale OneFS to address the vulnerability. Please refer to the Dell support website for the updates.