Primary

Context

Dell PowerScale OneFS Cryptographic Algorithm Vulnerability Allowing Information Disclosure

Vulnerability

Patched

A vulnerability exists in Dell PowerScale OneFS versions prior to 9.10.1.3 and in versions 9.11.0.0 through 9.12.0.0. This vulnerability involves the use of a broken or risky cryptographic algorithm. An unauthenticated attacker with remote access could exploit this issue, potentially leading to unauthorized information disclosure.

Impact

Exploitation of this vulnerability could result in unauthorized access to sensitive information.

Remediation

Users can upgrade to Dell PowerScale OneFS version 9.10.1.3 or later, or version 9.12.0.0 or later. For versions 9.11.0.0 through 9.12.0.0, users should upgrade to version 9.12.0.1 or later. The PowerScale OneFS Downloads Area is available for downloading the updated versions.

Added: Nov 10, 2025, 7:21 PM

Updated: Nov 10, 2025, 7:21 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

7.0

remediation

8.3

relevance

1.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

7.0

remediation

8.3

relevance

1.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dell PowerScale OneFS Cryptographic Algorithm Vulnerability Allowing Information Disclosure

Vulnerability

Impact

Remediation

Affected Products

Dell PowerScale OneFS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating