PT-2021-14611 · Dell Emc · Dell Emc Powerscale Onefs

Published

2021-08-02

Updated

2021-08-11

CVE-2021-21563

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Dell EMC PowerScale OneFS versions 8.1.2 through 9.1.0.x

Description The issue is related to an Improper Check for Unusual or Exceptional Conditions in the auditing component of Dell EMC PowerScale OneFS. This can lead to an authenticated user with low-privileges triggering a denial of service event.

Recommendations For versions 8.1.2 through 9.1.0.x, consider temporarily disabling the auditing component to prevent exploitation until a patch is available. Restrict access to the auditing component to minimize the risk of a denial of service event. Avoid using the auditing component with low-privileged accounts until the issue is resolved.

Fix

Improper Check for Exceptional Conditions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-754

Related Identifiers

CVE-2021-21563

Affected Products

Dell Emc Powerscale Onefs

PT-2021-14611 · Dell Emc · Dell Emc Powerscale Onefs

CVE-2021-21563

Weakness Enumeration

Related Identifiers

Affected Products

References · 5