CVE-2024-22449

Name of the Vulnerable Software and Affected Versions Dell PowerScale OneFS versions 9.0.0.x through 9.6.0.x

Description The issue is related to a missing authentication for a critical function, which could be exploited by a low-privileged local malicious user to gain elevated access.

Recommendations For Dell PowerScale OneFS versions 9.0.0.x through 9.6.0.x, consider restricting access to critical functions until a patch is available. As a temporary workaround, limit the privileges of local users to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.