Vulnerabilities > Dell > EMC Powerscale Onefs > 9.3.0.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-02-10 | CVE-2022-33934 | Cross-site Scripting vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x through 9.4.x contain multiple stored cross-site scripting vulnerabilities. | 4.8 |
2023-02-10 | CVE-2022-34454 | Out-of-bounds Write vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x-9.3.x, contain a heap-based buffer overflow. | 6.7 |
2023-02-01 | CVE-2022-45099 | Incorrect Default Permissions vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x-9.4.x, contain a weak encoding for a NDMP password. | 7.8 |
2023-02-01 | CVE-2022-45100 | Improper Certificate Validation vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x-9.3.x, contains an Improper Certificate Validation vulnerability. | 9.8 |
2022-10-21 | CVE-2022-31239 | Information Exposure Through Log Files vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, and 9.3.0.6, contain sensitive data in log files vulnerability. | 4.4 |
2022-10-21 | CVE-2022-34437 | OS Command Injection vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.2-9.3.0, contain an OS command injection vulnerability. | 6.7 |
2022-10-21 | CVE-2022-34438 | Improper Privilege Management vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x-9.4.0.x, contain a privilege context switching error. | 6.7 |
2022-10-21 | CVE-2022-34439 | Allocation of Resources Without Limits or Throttling vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.0.x-9.4.0.x contain allocation of Resources Without Limits or Throttling vulnerability. | 7.5 |
2022-09-02 | CVE-2022-34369 | Information Exposure Through Log Files vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.20, 9.2.1.13, 9.3.0.6, and 9.4.0.3 , contain an insertion of sensitive information in log files vulnerability. | 7.5 |
2022-09-02 | CVE-2022-34371 | Insufficiently Protected Credentials vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0.3, contain an unprotected transport of credentials vulnerability. | 9.8 |