CVE-2022-33932Unprotected Primary Channel in Dell Powerscale Onefs

CWE-419Unprotected Primary Channel3 documents3 sources
Severity
5.3MEDIUMNVD
EPSS
0.3%
top 50.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Dell Powerscale OnefsDell EMC Powerscale Onefs
Timeline
PublishedAug 22
Latest updateAug 23

Description

Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0.2, contain an unprotected primary channel vulnerability. An unauthenticated network malicious attacker may potentially exploit this vulnerability, leading to a denial of filesystem services.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

CVEListV5dell/powerscale_onefsunspecified8.2.x, 9.0.0.x, 9.1.0.x, 9.2.0.x, 9.2.1.x, 9.3.0.x, 9.4.0.x
NVDdell/emc_powerscale_onefs9.1.0.09.1.0.19+3

🔴Vulnerability Details

2
GHSA
GHSA-wp6m-7x48-75mj: Dell PowerScale OneFS, versions 92022-08-23
CVEList
CVE-2022-33932: Dell PowerScale OneFS, versions 92022-08-22
CVE-2022-33932 — Unprotected Primary Channel in Dell | cvebase