Dell

Emc Powerscale Onefs

84 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2021-36305

  • EPSS 0.24%
  • Veröffentlicht 12.11.2021 23:15:08
  • Zuletzt bearbeitet 21.11.2024 06:13:27

Dell PowerScale OneFS contains an Unsynchronized Access to Shared Data in a Multithreaded Context in SMB CA handling. An authenticated user of SMB on a cluster with CA could potentially exploit this vulnerability, leading to a denial of service over ...

7.5

CVE-2021-21528

  • EPSS 0.27%
  • Veröffentlicht 12.11.2021 23:15:08
  • Zuletzt bearbeitet 21.11.2024 05:48:31

Dell EMC PowerScale OneFS versions 9.1.0, 9.2.0.x, 9.2.1.x contain an Exposure of Information through Directory Listing vulnerability. This vulnerability is triggered when upgrading from a previous versions.

3.3

CVE-2021-36282

  • EPSS 0.05%
  • Veröffentlicht 16.08.2021 22:15:08
  • Zuletzt bearbeitet 21.11.2024 06:13:25

Dell EMC PowerScale OneFS versions 8.2.x - 9.1.0.x contain a use of uninitialized resource vulnerability. This can potentially allow an authenticated user with ISI_PRIV_LOGIN_CONSOLE or ISI_PRIV_LOGIN_SSH privileges to gain access up to 24 bytes of d...

8.8

CVE-2021-36281

  • EPSS 0.4%
  • Veröffentlicht 16.08.2021 22:15:07
  • Zuletzt bearbeitet 21.11.2024 06:13:25

Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment vulnerability. A low privileged authenticated user can potentially exploit this vulnerability to escalate privileges.

5.5

CVE-2021-36280

  • EPSS 0.05%
  • Veröffentlicht 16.08.2021 22:15:07
  • Zuletzt bearbeitet 21.11.2024 06:13:24

Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment for critical resource vulnerability. This could allow a user with ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE to access privileged information about the clus...

7.8

CVE-2021-36279

  • EPSS 0.04%
  • Veröffentlicht 16.08.2021 22:15:07
  • Zuletzt bearbeitet 21.11.2024 06:13:24

Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment for critical resource vulnerability. This could allow a user with ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE to access privileged information about the clus...

5.5

CVE-2021-36278

  • EPSS 0.19%
  • Veröffentlicht 16.08.2021 22:15:07
  • Zuletzt bearbeitet 21.11.2024 06:13:24

Dell EMC PowerScale OneFS versions 8.2.x, 9.1.0.x, and 9.1.1.1 contain a sensitive information exposure vulnerability in log files. A local malicious user with ISI_PRIV_LOGIN_SSH, ISI_PRIV_LOGIN_CONSOLE, or ISI_PRIV_SYS_SUPPORT privileges may exploit...

6.7

CVE-2021-21599

  • EPSS 0.22%
  • Veröffentlicht 16.08.2021 22:15:07
  • Zuletzt bearbeitet 21.11.2024 05:48:40

Dell EMC PowerScale OneFS versions 8.2.x - 9.2.1.x contain an OS command injection vulnerability. This may allow a user with ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE to escalate privileges and escape the compliance guarantees. This only impacts S...

6.7

CVE-2021-21595

  • EPSS 0.14%
  • Veröffentlicht 16.08.2021 22:15:07
  • Zuletzt bearbeitet 21.11.2024 05:48:40

Dell EMC PowerScale OneFS versions 8.2.x - 9.1.1.x contain an improper neutralization of special elements used in an OS command. This vulnerability could allow the compadmin user to elevate privileges. This only impacts Smartlock WORM compliance mode...

5.3

CVE-2021-21594

  • EPSS 0.26%
  • Veröffentlicht 16.08.2021 22:15:07
  • Zuletzt bearbeitet 21.11.2024 05:48:39

Dell PowerScale OneFS versions 8.2.2 - 9.1.0.x contain a use of get request method with sensitive query strings vulnerability. It can lead to potential disclosure of sensitive data. Dell recommends upgrading at your earliest opportunity.