What is CVE-2023-32492?

CVE-2023-32492 is a vulnerability in Dell PowerScale OneFS 9.5.0.x that allows a low-privileged attacker to disclose information or modify files due to incorrect default permissions.

How severe is CVE-2023-32492?

CVE-2023-32492 has a severity rating of 7.1 (high).

How can a low-privileged attacker exploit CVE-2023-32492?

A low-privileged attacker can exploit CVE-2023-32492 by taking advantage of the incorrect default permissions in Dell PowerScale OneFS 9.5.0.x, potentially leading to information disclosure or file modification.

What versions of Dell PowerScale OneFS are affected by CVE-2023-32492?

Dell PowerScale OneFS versions between 9.2.1.0 and 9.2.1.22, 9.4.0.0 and 9.4.0.13, and 9.5.0.0 and 9.5.0.3 are affected by CVE-2023-32492.

Where can I find more information about CVE-2023-32492?

You can find more information about CVE-2023-32492 at the following reference link: https://www.dell.com/support/kbdoc/en-us/000216717/dsa-2023-269-security-update-for-dell-powerscale-onefs-for-multiple-security-vulnerabilities

Vulnerability/
CVE-2023-32492

high

7.1

CWE

276

16/8/2023

1/10/2024

CVE-2023-32492

First published: Wed Aug 16 2023(Updated: )

Dell PowerScale OneFS 9.5.0.x contains an incorrect default permissions vulnerability. A low-privileged local attacker could potentially exploit this vulnerability, leading to information disclosure or allowing to modify files.

Credit: security_alert@emc.com security_alert@emc.com

Affected Software	Affected Version	How to fix
Dell PowerScale OneFS	>=9.2.1.0<=9.2.1.22
Dell PowerScale OneFS	>=9.4.0.0<=9.4.0.13
Dell PowerScale OneFS	>=9.5.0.0<=9.5.0.3

Never miss a vulnerability like this again

Reference Links

https://www.dell.com/support/kbdoc/en-us/000216717/dsa-2023-269-security-update-for-dell-powerscale-onefs-for-multiple-security-vulnerabilities

Frequently Asked Questions

What is CVE-2023-32492?
CVE-2023-32492 is a vulnerability in Dell PowerScale OneFS 9.5.0.x that allows a low-privileged attacker to disclose information or modify files due to incorrect default permissions.
How severe is CVE-2023-32492?
CVE-2023-32492 has a severity rating of 7.1 (high).
How can a low-privileged attacker exploit CVE-2023-32492?
A low-privileged attacker can exploit CVE-2023-32492 by taking advantage of the incorrect default permissions in Dell PowerScale OneFS 9.5.0.x, potentially leading to information disclosure or file modification.
What versions of Dell PowerScale OneFS are affected by CVE-2023-32492?
Dell PowerScale OneFS versions between 9.2.1.0 and 9.2.1.22, 9.4.0.0 and 9.4.0.13, and 9.5.0.0 and 9.5.0.3 are affected by CVE-2023-32492.
Where can I find more information about CVE-2023-32492?
You can find more information about CVE-2023-32492 at the following reference link: https://www.dell.com/support/kbdoc/en-us/000216717/dsa-2023-269-security-update-for-dell-powerscale-onefs-for-multiple-security-vulnerabilities

collector/nvd-api
collector/nvd-index
agent/weakness
agent/severity
agent/references
agent/author
agent/type
agent/event
agent/description
agent/first-publish-date
agent/last-modified-date
agent/softwarecombine
agent/tags
collector/mitre-cve
source/MITRE
vendor/dell
canonical/dell powerscale onefs
version/dell powerscale onefs/9.2.1.0
version/dell powerscale onefs/9.2.1.22
version/dell powerscale onefs/9.4.0.0
version/dell powerscale onefs/9.4.0.13
version/dell powerscale onefs/9.5.0.0
version/dell powerscale onefs/9.5.0.3

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.