threat
engine
.sh
Back
·
··:··
Home
/
Product
/
dell emc powerscale onefs
Product
dell emc powerscale onefs
84 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2023-25942
>= 9.1.0.0 and <= 9.1.0.28
Dell PowerScale OneFS versions 8.2.x-9.4.x contain an uncontrolled resource consumption vulnerability. A malicious network user wi
6.5
MEDIUM
CVE-2023-25941
>= 9.1.0.0 and <= 9.1.0.28
Dell PowerScale OneFS versions 8.2.x-9.5.0.x contain an elevation of privilege vulnerability. A low-privileged local attacker coul
7.8
HIGH
CVE-2023-25940
all versions
Dell PowerScale OneFS version 9.5.0.0 contains improper link resolution before file access vulnerability in isi_gather_info. A hig
6.7
MEDIUM
CVE-2023-25540
>= 9.4.0.0 and <= 9.4.0.11
Dell PowerScale OneFS 9.4.0.x contains an incorrect default permissions vulnerability. A local malicious user could potentially ex
6.0
MEDIUM
CVE-2022-33934
>= 9.1.0.0 and <= 9.1.0.23
Dell PowerScale OneFS, versions 8.2.x through 9.4.x contain multiple stored cross-site scripting vulnerabilities. A remote authent
7.7
HIGH
CVE-2022-34454
>= 9.1.0.0 and <= 9.1.0.20
Dell PowerScale OneFS, versions 8.2.x-9.3.x, contain a heap-based buffer overflow. A local privileged malicious user could potenti
6.7
MEDIUM
CVE-2023-22575
>= 9.1.0.0 and < 9.1.0.27
Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log file vulnerability in celog. A low
8.7
HIGH
CVE-2023-22574
>= 9.1.0.0 and < 9.1.0.27
Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log file vulnerability in platform API
8.1
HIGH
CVE-2023-22573
>= 9.1.0.0 and < 9.1.0.27
Dell PowerScale OneFS 9.0.0.x-9.4.0.x contain an insertion of sensitive information into log file vulnerability in cloudpool. A lo
7.9
HIGH
CVE-2023-22572
>= 9.1.0.0 and < 9.1.0.27
Dell PowerScale OneFS 9.1.0.x-9.4.0.x contain an insertion of sensitive information into log file vulnerability in change password
7.8
HIGH
CVE-2022-46679
>= 9.1.0.0 and < 9.1.0.26
Dell PowerScale OneFS 8.2.x, 9.0.0.x - 9.4.0.x, contain an insufficient resource pool vulnerability. A remote unauthenticated atta
6.5
MEDIUM
CVE-2022-45100
>= 9.1.0.0 and < 9.1.0.25
Dell PowerScale OneFS, versions 8.2.x-9.3.x, contains an Improper Certificate Validation vulnerability. An remote unauthenticated
8.1
HIGH
CVE-2022-45099
>= 9.1.0.0 and < 9.1.0.24
Dell PowerScale OneFS, versions 8.2.x-9.4.x, contain a weak encoding for a NDMP password. A malicious and privileged local attacke
7.8
HIGH
CVE-2022-45098
>= 9.1.0.0 and < 9.1.0.25
Dell PowerScale OneFS, 9.0.0.x-9.4.0.x, contain a cleartext storage of sensitive information vulnerability in S3 component. An aut
6.1
MEDIUM
CVE-2022-45101
>= 9.1.0.0 and < 9.1.0.25
Dell PowerScale OneFS 9.0.0.x - 9.4.0.x, contains an Improper Handling of Insufficient Privileges vulnerability in NFS. A remote u
7.3
HIGH
CVE-2022-45097
>= 9.1.0.0 and < 9.1.0.25
Dell PowerScale OneFS 9.0.0.x-9.4.0.x contains an Incorrect User Management vulnerability. A low privileged network attacker could
6.3
MEDIUM
CVE-2022-45096
>= 9.1.0.0 and < 9.1.0.25
Dell PowerScale OneFS, 8.2.0 through 9.3.0, contain an User Interface Security Issue. An unauthenticated remote user could uninten
5.4
MEDIUM
CVE-2022-45095
>= 9.1.0.0 and < 9.1.0.25
Dell PowerScale OneFS, 8.2.x-9.4.x, contain a command injection vulnerability. An authenticated user having access local shell and
6.7
MEDIUM
CVE-2022-34439
>= 9.1.0.0 and <= 9.1.0.22
Dell PowerScale OneFS, versions 8.2.0.x-9.4.0.x contain allocation of Resources Without Limits or Throttling vulnerability. A remo
5.3
MEDIUM
CVE-2022-34438
>= 9.1.0.0 and <= 9.1.0.22
Dell PowerScale OneFS, versions 8.2.x-9.4.0.x, contain a privilege context switching error. A local authenticated malicious user w
6.7
MEDIUM
CVE-2022-34437
>= 9.1.0.0 and <= 9.1.0.21
Dell PowerScale OneFS, versions 8.2.2-9.3.0, contain an OS command injection vulnerability. A privileged local malicious user coul
6.7
MEDIUM
CVE-2022-31239
>= 9.1.0.0 and <= 9.1.0.19
Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, and 9.3.0.6, contain sensitive data in log files vul
6.7
MEDIUM
CVE-2022-34378
>= 9.1.0.0 and <= 9.1.0.20
Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.20, 9.2.1.13, 9.3.0.6, and 9.4.0.3, contain a relative path traver
5.5
MEDIUM
CVE-2022-34371
>= 9.1.0.0 and <= 9.1.0.19
Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0.3, contain an unprotected transpo
8.1
HIGH
CVE-2022-34369
>= 9.1.0.0 and <= 9.1.0.20
Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.20, 9.2.1.13, 9.3.0.6, and 9.4.0.3 , contain an insertion of sensi
8.1
HIGH
CVE-2022-33932
>= 9.1.0.0 and <= 9.1.0.19
Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0.2, contain an unprotected primary
5.3
MEDIUM
CVE-2022-32480
>= 9.1.0.0 and <= 9.1.0.19
Dell PowerScale OneFS, versions 9.0.0, up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0.2, contain an insecure default i
4.3
MEDIUM
CVE-2022-31238
>= 9.1.0.0 and <= 9.1.0.19
Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0.2, contain a process invoked with
4.7
MEDIUM
CVE-2022-31237
>= 9.2.0 and <= 9.2.1.12
Dell PowerScale OneFS, versions 9.2.0 up to and including 9.2.1.12 and 9.3.0.5 contain an improper preservation of permissions vul
3.3
LOW
CVE-2022-24413
>= 8.2.2 and <= 9.3.0
Dell PowerScale OneFS, versions 8.2.2-9.3.x, contain a time-of-check-to-time-of-use vulnerability. A local user with access to the
4.4
MEDIUM
CVE-2022-24412
>= 8.2.2 and <= 9.3.0
Dell EMC PowerScale OneFS 8.2.x - 9.3.0.x contain an improper handling of value vulnerability. An unprivileged network attacker co
7.5
HIGH
CVE-2022-24411
>= 8.2.2 and <= 9.3.0
Dell PowerScale OneFS 8.2.2 and above contain an elevation of privilege vulnerability. A local attacker with ISI_PRIV_LOGIN_SSH an
7.8
HIGH
CVE-2022-23163
>= 8.2.2 and <= 9.3.0
Dell PowerScale OneFS, 8.2,x, 9.1.0.x, 9.2.1.x, and 9.3.0.x contain a denial of service vulnerability. A local malicious user coul
4.7
MEDIUM
CVE-2022-23161
>= 8.2.2 and <= 9.3.0
Dell PowerScale OneFS versions 8.2.x - 9.3.0.x contain a denial-of-service vulnerability in SmartConnect. An unprivileged network
7.5
HIGH
CVE-2022-23160
>= 8.2.2 and <= 9.3.0
Dell PowerScale OneFS, versions 8.2.0-9.3.0, contains an Improper Handling of Insufficient Permissions vulnerability. An remote ma
5.4
MEDIUM
CVE-2022-23159
>= 8.2.2 and <= 9.3.0
Dell PowerScale OneFS, 8.2.2 - 9.3.0.x, contain a missing release of memory after effective lifetime vulnerability. An authenticat
4.8
MEDIUM
CVE-2022-22565
>= 8.2.0 and <= 9.3.0
Dell PowerScale OneFS, versions 9.0.0-9.3.0, contain an improper authorization of index containing sensitive information. An authe
4.7
MEDIUM
CVE-2022-22562
>= 8.2.0 and <= 9.2.1.0
Dell PowerScale OneFS, versions 8.2.0-9.3.0, contain a improper handling of missing values exploit. An unauthenticated network att
7.5
HIGH
CVE-2022-22561
>= 8.2.0 and <= 9.3.0
Dell PowerScale OneFS, versions 8.2.x-9.3.0.x, contain an improper restriction of excessive authentication attempts. An unauthenti
8.1
HIGH
CVE-2022-22560
>= 8.1.0 and <= 9.2.1.0
Dell EMC PowerScale OneFS 8.1.x - 9.1.x contain hard coded credentials. This allows a local user with knowledge of the credentials
7.1
HIGH
CVE-2022-22559
all versions
Dell PowerScale OneFS, version 9.3.0, contains a use of a broken or risky cryptographic algorithm. An unprivileged network attacke
7.5
HIGH
CVE-2022-22550
>= 8.2.2 and <= 9.3.0
Dell PowerScale OneFS, versions 8.2.2 and above, contain a password disclosure vulnerability. An unprivileged local attacker could
6.7
MEDIUM
CVE-2022-22549
>= 8.2.0 and <= 9.3.0
Dell PowerScale OneFS, 8.2.x-9.3.x, contains a Improper Certificate Validation. A unauthenticated remote attacker could potentiall
7.5
HIGH
CVE-2022-26855
>= 8.2.0 and <= 9.3.0.0
Dell PowerScale OneFS, versions 8.2.x-9.3.0.x, contains an incorrect default permissions vulnerability. A local malicious user cou
5.5
MEDIUM
CVE-2022-26854
>= 8.2.0 and <= 9.2.1.0
Dell PowerScale OneFS, versions 8.2.x-9.2.x, contain risky cryptographic algorithms. A remote unprivileged malicious attacker coul
8.1
HIGH
CVE-2022-26852
>= 8.2.0 and <= 9.3.0.0
Dell PowerScale OneFS, versions 8.2.x-9.3.x, contain a predictable seed in pseudo-random number generator. A remote unauthenticate
8.1
HIGH
CVE-2022-26851
>= 8.2.2 and <= 9.3.0.0
Dell PowerScale OneFS, 8.2.2-9.3.x, contains a predictable file name from observable state vulnerability. An unprivileged network
9.1
CRITICAL
CVE-2022-24428
>= 8.2.0 and <= 9.3.0.0
Dell PowerScale OneFS, versions 8.2.x, 9.0.0.x, 9.1.0.x, 9.2.0.x, 9.2.1.x, and 9.3.0.x, contain an improper preservation of privil
6.3
MEDIUM
CVE-2022-22563
>= 8.2.0 and <= 9.3.0.0
Dell EMC Powerscale OneFS 8.2.x - 9.2.x omit security-relevant information in /etc/master.passwd. A high-privileged user can explo
4.4
MEDIUM
CVE-2021-21561
all versions
Dell PowerScale OneFS version 8.1.2 contains a sensitive information exposure vulnerability. This would allow a malicious user wit
7.8
HIGH
CVE-2021-36305
all versions
Dell PowerScale OneFS contains an Unsynchronized Access to Shared Data in a Multithreaded Context in SMB CA handling. An authentic
6.5
MEDIUM
CVE-2021-21528
all versions
Dell EMC PowerScale OneFS versions 9.1.0, 9.2.0.x, 9.2.1.x contain an Exposure of Information through Directory Listing vulnerabil
7.5
HIGH
CVE-2021-36282
>= 9.0.0.0 and < 9.2.0
Dell EMC PowerScale OneFS versions 8.2.x - 9.1.0.x contain a use of uninitialized resource vulnerability. This can potentially all
2.5
LOW
CVE-2021-36281
>= 9.0.0.0 and <= 9.2.1
Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment vulnerability. A low privileged authen
7.5
HIGH
CVE-2021-36280
>= 9.0.0.0 and <= 9.2.1
Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment for critical resource vulnerability. T
7.8
HIGH
CVE-2021-36279
>= 9.0.0.0 and <= 9.2.2.0
Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an incorrect permission assignment for critical resource vulnerability. T
7.8
HIGH
CVE-2021-36278
>= 8.2.0 and <= 8.2.2
Dell EMC PowerScale OneFS versions 8.2.x, 9.1.0.x, and 9.1.1.1 contain a sensitive information exposure vulnerability in log files
8.1
HIGH
CVE-2021-21599
>= 9.0.0.0 and <= 9.2.1
Dell EMC PowerScale OneFS versions 8.2.x - 9.2.1.x contain an OS command injection vulnerability. This may allow a user with ISI_P
6.0
MEDIUM
CVE-2021-21595
>= 9.0.0.0 and < 9.2.0
Dell EMC PowerScale OneFS versions 8.2.x - 9.1.1.x contain an improper neutralization of special elements used in an OS command. T
6.0
MEDIUM
CVE-2021-21594
>= 9.0.0.0 and <= 9.1.0
Dell PowerScale OneFS versions 8.2.2 - 9.1.0.x contain a use of get request method with sensitive query strings vulnerability. It
8.2
HIGH
CVE-2021-21592
>= 9.0.0.0 and <= 9.2.0
Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x improperly handle an exceptional condition. A remote low privileged user could po
3.1
LOW
CVE-2021-21568
>= 9.0.0.0 and <= 9.2.1
Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an insufficient logging vulnerability. An authenticated user with ISI_PRI
4.3
MEDIUM
CVE-2021-21563
all versions
Dell EMC PowerScale OneFS versions 8.1.2-9.1.0.x contain an Improper Check for Unusual or Exceptional Conditions in its auditing c
6.5
MEDIUM
CVE-2021-21562
all versions
Dell EMC PowerScale OneFS contains an untrusted search path vulnerability. This vulnerability allows a user with (ISI_PRIV_LOGIN_S
4.4
MEDIUM
CVE-2020-5353
all versions
The Dell Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 default configuration for Network Fil
8.8
HIGH
CVE-2020-26180
all versions
Dell EMC Isilon OneFS supported versions 8.1 and later and Dell EMC PowerScale OneFS supported version 9.0.0 contain an access iss
6.3
MEDIUM
CVE-2021-21550
all versions
Dell EMC PowerScale OneFS 8.1.0-9.1.0 contain an improper neutralization of special elements used in an OS command vulnerability.
6.0
MEDIUM
CVE-2021-21527
all versions
Dell PowerScale OneFS 8.1.0-9.1.0 contain an improper neutralization of special elements used in an OS command vulnerability. This
6.0
MEDIUM
CVE-2020-26197
all versions
Dell PowerScale OneFS 8.1.0 - 9.1.0 contains an LDAP Provider inability to connect over TLSv1.2 vulnerability. It may make it easi
7.5
HIGH
CVE-2021-21506
all versions
PowerScale OneFS 8.1.2,8.2.2 and 9.1.0 contains an improper input sanitization issue in its API handler. An un-authtenticated with
8.8
HIGH
CVE-2021-21503
all versions
PowerScale OneFS 8.1.2,8.2.2 and 9.1.0 contains an improper input sanitization issue in a command. The Compadmin user could potent
7.8
HIGH
CVE-2021-21502
all versions
Dell PowerScale OneFS versions 8.1.0 - 9.1.0 contain a "use of SSH key past account expiration" vulnerability. A user on the netwo
9.8
CRITICAL
CVE-2020-26196
all versions
Dell EMC PowerScale OneFS versions 8.1.0-9.1.0 contain a Backup/Restore Privilege implementation issue. A user with the BackupAdmi
5.5
MEDIUM
CVE-2020-26195
all versions
Dell EMC PowerScale OneFS versions 8.1.2 - 9.1.0 contain an issue where the OneFS SMB directory auto-create may erroneously create
5.3
MEDIUM
CVE-2020-26194
all versions
Dell EMC PowerScale OneFS versions 8.1.2 and 8.2.2 contain an Incorrect Permission Assignment for a Critical Resource vulnerabilit
7.0
HIGH
CVE-2020-26193
all versions
Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain an improper input validation vulnerability. A user with the ISI_PRIV_CLUS
7.8
HIGH
CVE-2020-26192
all versions
Dell EMC PowerScale OneFS versions 8.2.0 - 9.1.0 contain a privilege escalation vulnerability. A non-admin user with either ISI_PR
7.8
HIGH
CVE-2020-26191
all versions
Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain a privilege escalation vulnerability. A user with ISI_PRIV_JOB_ENGINE may
7.8
HIGH
CVE-2020-26181
all versions
Dell EMC Isilon OneFS versions 8.1 and later and Dell EMC PowerScale OneFS version 9.0.0 contain a privilege escalation vulnerabil
7.0
HIGH
CVE-2020-5369
all versions
Dell EMC Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 contain a privilege escalation vulner
8.8
HIGH
CVE-2020-5383
all versions
Dell EMC Isilon OneFS version 8.2.2 and Dell EMC PowerScale OneFS version 9.0.0 contains a buffer overflow vulnerability in the Li
5.3
MEDIUM
CVE-2020-5371
all versions
Dell EMC Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale version 9.0.0 contain a file permissions vulnerability. A
8.0
HIGH
CVE-2016-1346
all versions
The kernel in Cisco TelePresence Server 3.0 through 4.2(4.18) on Mobility Services Engine (MSE) 8710 devices allows remote attacke
5.9
MEDIUM
CVE-2015-6312
all versions
Cisco TelePresence Server 3.1 on 7010, Mobility Services Engine (MSE) 8710, Multiparty Media 310 and 320, and Virtual Machine (VM)
7.5
HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin