Vulnerabilities > CVE-2020-26195 - Improper Handling of Exceptional Conditions vulnerability in Dell EMC Powerscale Onefs

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

LOW

network

low complexity

dell

CWE-755

NVD

Published: 2021-02-09

Updated: 2022-10-21

Summary

Dell EMC PowerScale OneFS versions 8.1.2 – 9.1.0 contain an issue where the OneFS SMB directory auto-create may erroneously create a directory for a user. A remote unauthenticated attacker may take advantage of this issue to slow down the system.

Vulnerable Configurations

Part	Description	Count
OS	Dell Dell EMC Powerscale Onefs 9.0.0 Dell EMC Powerscale Onefs 8.2.0 Dell EMC Powerscale Onefs 8.2.1 Dell EMC Powerscale Onefs 8.1.2 Dell EMC Powerscale Onefs 8.2.2 Dell EMC Powerscale Onefs 9.1.0	6

Common Weakness Enumeration (CWE)

CWE-755 - Improper Handling of Exceptional Conditions

References

https://www.dell.com/support/kbdoc/en-us/000182873/dsa-2021-009-dell-powerscale-onefs-security-update-for-multiple-vulnerabilities