Dell PowerScale OneFS
Easy fix4 remedies
cpe:2.3:a:dell:powerscale_onefs:*:*:*:*:*:*:*, +2 more
Easy fix4 remedies
- >= 9.5.0.0, <= 9.10.0.1
- >= 9.7.0.0, <= 9.7.1.7
- >= 9.5.0.0, <= 9.5.1.2
Dell PowerScale OneFS Missing Authorization Vulnerability in NFS Export Allowing Unauthorized Filesystem Access
Vulnerability
Patched
A missing authorization vulnerability has been identified in the NFS export of Dell PowerScale OneFS, affecting versions 9.5.0.0 through 9.10.0.1. This vulnerability allows an unauthenticated attacker with remote access to gain unauthorized access to the filesystem. Exploitation of this vulnerability could lead to reading, modifying, and deleting arbitrary files, potentially allowing for a full system compromise.
Impact
Exploitation of this vulnerability could lead to unauthorized access to the filesystem, allowing an attacker to read, modify, and delete arbitrary files. This could result in a complete compromise of the affected system.
Remediation
Dell PowerScale OneFS users are advised to upgrade to version 9.10.1.2 or later. For versions 9.7.0.0 through 9.7.1.7, upgrade to version 9.7.1.8 or later. For versions 9.5.0.0 through 9.5.1.2, upgrade to version 9.5.1.3 or later. Instructions for downloading the update are available in the Dell PowerScale OneFS Downloads Area.
Added: Jun 20, 2025, 2:38 PM
Updated: Jun 20, 2025, 2:38 PM
Vulnerability Rating
Custom Algorithm
spread
4.5impact
7.5exploitability
7.0remediation
8.3relevance
0.2threat
0.0urgency
2.9incentive
5.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.