PT-2022-20632 · Dell · Dell Powerscale Onefs
Published
2022-08-22
·
Updated
2023-08-08
·
CVE-2022-31238
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Dell PowerScale OneFS versions 9.0.0 up to and including 9.1.0.19
Dell PowerScale OneFS version 9.2.1.12
Dell PowerScale OneFS version 9.3.0.6
Dell PowerScale OneFS version 9.4.0.2
Description
The issue is related to a process invoked with sensitive information, which could be exploited by a CLI user, potentially leading to information disclosure.
Recommendations
For version 9.0.0 up to and including 9.1.0.19, update to a version later than 9.1.0.19 to resolve the issue.
For version 9.2.1.12, update to a version later than 9.2.1.12 to resolve the issue.
For version 9.3.0.6, update to a version later than 9.3.0.6 to resolve the issue.
For version 9.4.0.2, update to a version later than 9.4.0.2 to resolve the issue.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Dell Powerscale Onefs