PT-2024-22778 · Dell · Dell Powerscale Onefs
Published
2024-06-04
·
Updated
2025-01-08
·
CVE-2024-29170
CVSS v3.1
8.1
High
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Dell PowerScale OneFS versions 8.2.x through 9.8.0.x
Description
The issue concerns a use of hard-coded credentials, which could be exploited by an adjacent network unauthenticated attacker. This could lead to information disclosure of network traffic and denial of service.
Recommendations
For Dell PowerScale OneFS versions 8.2.x through 9.8.0.x, update to a version that contains a fix for this issue to prevent potential exploitation.
Fix
Using Hardcoded Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Dell Powerscale Onefs