Vulnerabilities > CVE-2021-21553 - Unspecified vulnerability in Dell Powerscale Onefs 9.0/9.1

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

dell

NVD

Published: 2021-08-03

Updated: 2021-08-11

Summary

Dell PowerScale OneFS versions 8.1.0-9.1.0 contain an Incorrect User Management vulnerability.under some specific conditions, this can allow the CompAdmin user to elevate privileges and break out of Compliance mode. This is a critical vulnerability and Dell recommends upgrading at the earliest.

Vulnerable Configurations

Part	Description	Count
Application	Dell Dell Powerscale Onefs 9.0 Dell Powerscale Onefs 9.1	2

References

https://www.dell.com/support/kbdoc/000188148