CVE-2023-44288
https://notcve.org/view.php?id=CVE-2023-44288
Dell PowerScale OneFS, 8.2.2.x through 9.6.0.x, contains an improper control of a resource through its lifetime vulnerability. An unauthenticated network attacker could potentially exploit this vulnerability, leading to denial of service. Dell PowerScale OneFS, 8.2.2.x a 9.6.0.x, contiene un control inadecuado de un recurso a través de su vulnerabilidad de por vida. Un atacante de red no autenticado podría explotar esta vulnerabilidad y provocar una denegación de servicio. • https://www.dell.com/support/kbdoc/en-us/000219932/dsa-2023-417-dell-powerscale-onefs-security-updates-for-multiple-security-vulnerabilities • CWE-664: Improper Control of a Resource Through its Lifetime •
CVE-2023-43076
https://notcve.org/view.php?id=CVE-2023-43076
Dell PowerScale OneFS 8.2.x,9.0.0.x-9.5.0.x contains a denial-of-service vulnerability. A low privilege remote attacker could potentially exploit this vulnerability to cause an out of memory (OOM) condition. Dell PowerScale OneFS 8.2.x,9.0.0.x-9.5.0.x contiene una vulnerabilidad de denegación de servicio. Un atacante remoto con privilegios bajos podría explotar esta vulnerabilidad para provocar una condición de Out Of Memory (OOM). • https://www.dell.com/support/kbdoc/en-us/000218934/powerscale-onefs-security-updates-for-multiple-security-vulnerabilities • CWE-401: Missing Release of Memory after Effective Lifetime •
CVE-2023-43087
https://notcve.org/view.php?id=CVE-2023-43087
Dell PowerScale OneFS 8.2.x, 9.0.0.x-9.5.0.x contains an improper handling of insufficient permissions. A low privileged remote attacker could potentially exploit this vulnerability to cause information disclosure. Dell PowerScale OneFS 8.2.x, 9.0.0.x-9.5.0.x contiene un manejo inadecuado de permisos insuficientes. Un atacante remoto con pocos privilegios podría explotar esta vulnerabilidad para provocar la divulgación de información. • https://www.dell.com/support/kbdoc/en-us/000218934/powerscale-onefs-security-updates-for-multiple-security-vulnerabilities • CWE-280: Improper Handling of Insufficient Permissions or Privileges CWE-755: Improper Handling of Exceptional Conditions •
CVE-2022-34445
https://notcve.org/view.php?id=CVE-2022-34445
Dell PowerScale OneFS, versions 8.2.x through 9.3.x contain a weak encoding for a password. A malicious local privileged attacker may potentially exploit this vulnerability, leading to information disclosure. • https://www.dell.com/support/kbdoc/en-us/000205618/dsa-2022-271 • CWE-261: Weak Encoding for Password CWE-522: Insufficiently Protected Credentials •
CVE-2022-34444
https://notcve.org/view.php?id=CVE-2022-34444
Dell PowerScale OneFS, versions 9.2.0.x through 9.4.0.x contain an information vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability to cause data leak. • https://www.dell.com/support/kbdoc/en-us/000205618/dsa-2022-271 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •