Vulnerabilities > Dell > EMC Powerscale Onefs > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-01 | CVE-2022-45100 | Improper Certificate Validation vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x-9.3.x, contains an Improper Certificate Validation vulnerability. | 9.8 |
| 2023-02-01 | CVE-2022-45101 | Improper Privilege Management vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS 9.0.0.x - 9.4.0.x, contains an Improper Handling of Insufficient Privileges vulnerability in NFS. | 9.8 |
| 2022-09-02 | CVE-2022-34371 | Insufficiently Protected Credentials vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0.3, contain an unprotected transport of credentials vulnerability. | 9.8 |
| 2022-04-12 | CVE-2022-22561 | Improper Restriction of Excessive Authentication Attempts vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x-9.3.0.x, contain an improper restriction of excessive authentication attempts. | 9.8 |
| 2022-04-08 | CVE-2022-26854 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x-9.2.x, contain risky cryptographic algorithms. | 9.8 |
| 2022-04-08 | CVE-2022-26852 | Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, versions 8.2.x-9.3.x, contain a predictable seed in pseudo-random number generator. | 9.8 |
| 2022-04-08 | CVE-2022-26851 | Use of Insufficiently Random Values vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS, 8.2.2-9.3.x, contains a predictable file name from observable state vulnerability. | 9.1 |
| 2021-04-20 | CVE-2020-26197 | Cleartext Transmission of Sensitive Information vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS 8.1.0 - 9.1.0 contains an LDAP Provider inability to connect over TLSv1.2 vulnerability. | 9.1 |
| 2021-02-09 | CVE-2021-21502 | Improper Authentication vulnerability in Dell EMC Powerscale Onefs Dell PowerScale OneFS versions 8.1.0 – 9.1.0 contain a "use of SSH key past account expiration" vulnerability. | 9.8 |