CVE-2024-25964

Name of the Vulnerable Software and Affected Versions Dell PowerScale OneFS versions 9.5.0.x through 9.7.0.x

Description The issue is related to a covert timing channel vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to denial of service. The vulnerability is associated with the use of hidden timing channels for data transmission.

Recommendations For Dell PowerScale OneFS versions 9.5.0.x through 9.7.0.x, consider restricting access to the system to minimize the risk of exploitation until a patch is available. As a temporary workaround, limit the use of remote connections to reduce the potential for denial of service attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.