PT-2023-23829 · Dell · Dell Powerscale Onefs

Published

2023-08-16

Updated

2023-08-22

CVE-2023-32495

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Dell PowerScale OneFS versions 8.2.x through 9.5.x

Description The issue concerns exposure of sensitive information to an unauthorized actor. An authorized local attacker could potentially exploit this, leading to escalation of privileges.

Recommendations For versions 8.2.x through 9.5.x, update to a version that contains a fix for this issue to prevent exploitation and potential privilege escalation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2023-32495

Affected Products

Dell Powerscale Onefs

PT-2023-23829 · Dell · Dell Powerscale Onefs

CVE-2023-32495

Weakness Enumeration

Related Identifiers

Affected Products

References · 5