Vulnerabilities > Dell > EMC Powerscale Onefs > 9.3.0.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-10 | CVE-2022-33934 | Cross-site Scripting vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x through 9.4.x contain multiple stored cross-site scripting vulnerabilities. | 4.8 |
| 2023-02-10 | CVE-2022-34454 | Out-of-bounds Write vulnerability in Dell EMC Powerscale Onefs 9.1.0.0/9.2.1.0/9.3.0.0 Dell PowerScale OneFS, versions 8.2.x-9.3.x, contain a heap-based buffer overflow. | 6.7 |
| 2023-02-01 | CVE-2022-45099 | Incorrect Default Permissions vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x-9.4.x, contain a weak encoding for a NDMP password. | 7.8 |
| 2023-02-01 | CVE-2022-45100 | Improper Certificate Validation vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x-9.3.x, contains an Improper Certificate Validation vulnerability. | 9.8 |
| 2022-10-21 | CVE-2022-31239 | Information Exposure Through Log Files vulnerability in Dell EMC Powerscale Onefs 9.1.0.0/9.2.1.0/9.3.0.0 Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, and 9.3.0.6, contain sensitive data in log files vulnerability. | 4.4 |
| 2022-10-21 | CVE-2022-34437 | OS Command Injection vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.2-9.3.0, contain an OS command injection vulnerability. | 6.7 |
| 2022-10-21 | CVE-2022-34438 | Improper Privilege Management vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x-9.4.0.x, contain a privilege context switching error. | 6.7 |
| 2022-10-21 | CVE-2022-34439 | Allocation of Resources Without Limits or Throttling vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.0.x-9.4.0.x contain allocation of Resources Without Limits or Throttling vulnerability. | 7.5 |
| 2022-09-02 | CVE-2022-34371 | Insufficiently Protected Credentials vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0.3, contain an unprotected transport of credentials vulnerability. | 9.8 |
| 2022-08-22 | CVE-2022-31238 | Information Exposure vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0.2, contain a process invoked with sensitive information vulnerability. | 5.5 |