Vulnerabilities > Dell > EMC Powerscale Onefs > 9.3.0.0

DATE CVE VULNERABILITY TITLE RISK
2022-09-02 CVE-2022-34378 Path Traversal vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.20, 9.2.1.13, 9.3.0.6, and 9.4.0.3, contain a relative path traversal vulnerability.
local
low complexity
dell CWE-22
5.5
2022-08-22 CVE-2022-31237 Improper Preservation of Permissions vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS, versions 9.2.0 up to and including 9.2.1.12 and 9.3.0.5 contain an improper preservation of permissions vulnerability in SyncIQ.
local
low complexity
dell CWE-281
3.3
2022-08-22 CVE-2022-31238 Information Exposure vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0.2, contain a process invoked with sensitive information vulnerability.
local
low complexity
dell CWE-200
5.5
2022-08-22 CVE-2022-32480 Insecure Default Initialization of Resource vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS, versions 9.0.0, up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0.2, contain an insecure default initialization of a resource vulnerability.
network
low complexity
dell CWE-1188
6.5
2022-08-22 CVE-2022-33932 Unspecified vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0.2, contain an unprotected primary channel vulnerability.
network
low complexity
dell
5.3
2022-04-08 CVE-2022-22563 Unspecified vulnerability in Dell EMC Powerscale Onefs
Dell EMC Powerscale OneFS 8.2.x - 9.2.x omit security-relevant information in /etc/master.passwd.
local
low complexity
dell
4.4
2022-04-08 CVE-2022-24428 Improper Preservation of Permissions vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS, versions 8.2.x, 9.0.0.x, 9.1.0.x, 9.2.0.x, 9.2.1.x, and 9.3.0.x, contain an improper preservation of privileges.
network
low complexity
dell CWE-281
8.8
2022-04-08 CVE-2022-26851 Use of Insufficiently Random Values vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS, 8.2.2-9.3.x, contains a predictable file name from observable state vulnerability.
network
low complexity
dell CWE-330
critical
9.1
2022-04-08 CVE-2022-26852 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS, versions 8.2.x-9.3.x, contain a predictable seed in pseudo-random number generator.
network
low complexity
dell CWE-335
critical
9.8
2022-04-08 CVE-2022-26855 Incorrect Default Permissions vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS, versions 8.2.x-9.3.0.x, contains an incorrect default permissions vulnerability.
local
low complexity
dell CWE-276
5.5