CVE-2024-25953

Name of the Vulnerable Software and Affected Versions Dell PowerScale OneFS versions 9.4.0.x through 9.7.0.x

Description The issue is related to the tracking of symbolic links in the PowerScale OneFS operating system. Exploitation of this issue may allow an attacker to cause a denial of service and impact the integrity of protected information. A local high-privileged attacker could potentially exploit this, leading to denial of service and information tampering.

Recommendations For versions 9.4.0.x through 9.7.0.x, consider restricting access to symbolic links to minimize the risk of exploitation until a patch is available. As a temporary workaround, disabling the tracking of symbolic links may help mitigate the issue. However, specific steps for these versions are not provided, so at the moment, there is no information about a newer version that contains a fix for this vulnerability.