4.8
CVE-2026-22281
- EPSS 0.01%
- Veröffentlicht 22.01.2026 19:11:28
- Zuletzt bearbeitet 28.01.2026 18:14:09
- Quelle security_alert@emc.com
- CVE-Watchlists
- Unerledigt
Dell PowerScale OneFS, versions 9.5.0.0 through 9.5.1.5, versions 9.6.0.0 through 9.7.1.10, versions 9.8.0.0 through 9.10.1.3, versions starting from 9.11.0.0 and prior to 9.13.0.0, contains a Time-of-check Time-of-use (TOCTOU) race condition vulnerability. A low privileged attacker with adjacent network access could potentially exploit this vulnerability, leading to denial of service.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Dell ≫ Powerscale Onefs Version >= 9.5.0.0 < 9.5.1.6
Dell ≫ Powerscale Onefs Version >= 9.6.0.0 < 9.7.1.11
Dell ≫ Powerscale Onefs Version >= 9.8.0.0 < 9.10.1.4
Dell ≫ Powerscale Onefs Version >= 9.11.0.0 < 9.13.0.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.01% | 0.007 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.8 | 1.2 | 3.6 |
CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
|
| security_alert@emc.com | 3.5 | 2.1 | 1.4 |
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
|
CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition
The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check. This can cause the product to perform invalid actions when the resource is in an unexpected state.