First published: Tue Apr 04 2023(Updated: )
Dell PowerScale OneFS versions 8.2.x-9.5.0.x contain an elevation of privilege vulnerability. A low-privileged local attacker could potentially exploit this vulnerability, leading to Denial of service, escalation of privileges, and information disclosure. This vulnerability breaks the compliance mode guarantee.
Credit: security_alert@emc.com
Affected Software | Affected Version | How to fix |
---|---|---|
Dell EMC PowerScale OneFS | >=9.1.0.0<=9.1.0.28 | |
Dell EMC PowerScale OneFS | >=9.2.1.0<9.2.1.22 | |
Dell EMC PowerScale OneFS | >=9.4.0.0<9.4.0.13 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-25941 is a vulnerability in Dell PowerScale OneFS versions 8.2.x-9.5.0.x that allows a low-privileged local attacker to elevate their privileges, leading to denial of service, escalation of privileges, and information disclosure.
CVE-2023-25941 has a severity score of 7.8 out of 10, which is considered high.
The affected software for CVE-2023-25941 is Dell PowerScale OneFS versions 8.2.x-9.5.0.x.
CVE-2023-25941 can be exploited by a low-privileged local attacker.
To fix CVE-2023-25941, Dell provides a security advisory with instructions and patches. Please refer to Dell's support website for more information.