Dell PowerScale OneFS
Moderate fix4 remedies
cpe:2.3:a:dell:powerscale_onefs:*:*:*:*:*:*:*, +2 more
Moderate fix4 remedies
- >= 9.5.0.0, <= 9.10.1.2
- < 9.12.0.0
- >= 9.7.0.0, <= 9.7.1.9
- >= 9.5.0.0, <= 9.5.1.4
Dell PowerScale OneFS Sensitive Information Log Injection Vulnerability
Vulnerability
Patched
A vulnerability exists in Dell PowerScale OneFS versions prior to 9.12.0.0, allowing low-privileged attackers with local access to inject sensitive information into log files. This could lead to the disclosure of user credentials, which may be used to access the application with the privileges of the compromised account.
Impact
Exploitation of this vulnerability could result in the unauthorized disclosure of user credentials, potentially allowing access to the application with the rights of the compromised user.
Remediation
Users can upgrade to Dell PowerScale OneFS versions 9.12.0.0 or later. For versions 9.5.0.0 through 9.10.1.2, the recommended version is 9.10.1.3 or later. Instructions for downloading the update are available in the PowerScale OneFS Downloads Area.
Added: Apr 16, 2026, 7:30 PM
Updated: Apr 16, 2026, 7:30 PM
Vulnerability Rating
Custom Algorithm
spread
4.5impact
2.5exploitability
3.5remediation
7.7relevance
6.0threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.