CVE-2023-22575

Name of the Vulnerable Software and Affected Versions Dell PowerScale OneFS versions 9.0.0.x through 9.4.0.x

Description The issue is related to the insertion of sensitive information into log files in the celog component, potentially leading to information disclosure and escalation of privileges. A low-privileges user could exploit this, and it is associated with the disclosure of information through log files.

Recommendations For Dell PowerScale OneFS versions 9.0.0.x through 9.4.0.x, consider restricting access to the celog log files to minimize the risk of information disclosure until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.