Vulnerabilities > CVE-2024-24901 - Unspecified vulnerability in Dell Powerscale Onefs

CVSS 2.3 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

NONE

local

low complexity

dell

NVD

Published: 2024-03-04

Updated: 2025-01-08

Summary

Dell PowerScale OneFS 8.2.x through 9.6.0.x contain an insufficient logging vulnerability. A local malicious user with high privileges could potentially exploit this vulnerability, causing audit messages lost and not recorded for a specific time period.

Vulnerable Configurations

Part	Description	Count
Application	Dell Dell Powerscale Onefs 9.6.1 Dell Powerscale Onefs 8.2.0 Dell Powerscale Onefs 8.2.1 Dell Powerscale Onefs 8.2.2 Dell Powerscale Onefs 8.2.2.0 Dell Powerscale Onefs 9.0 Dell Powerscale Onefs 9.0.0 Dell Powerscale Onefs 9.0.0.0 Dell Powerscale Onefs 9.1 Dell Powerscale Onefs 9.1.0 Dell Powerscale Onefs 9.1.0.0 Dell Powerscale Onefs 9.1.1 Dell Powerscale Onefs 9.2 Dell Powerscale Onefs 9.2.0 Dell Powerscale Onefs 9.2.1 Dell Powerscale Onefs 9.2.1.23 Dell Powerscale Onefs 9.2.1.24 Dell Powerscale Onefs 9.3.0.0 Dell Powerscale Onefs 9.4 Dell Powerscale Onefs 9.4.0 Dell Powerscale Onefs 9.4.0.14 Dell Powerscale Onefs 9.4.0.15 Dell Powerscale Onefs 9.4.0.16 Dell Powerscale Onefs 9.5.0.0 Dell Powerscale Onefs 9.5.0.5 Dell Powerscale Onefs 9.5.0.6	26

Summary

Vulnerable Configurations

References