CVE-2022-34371
published 2022-09-02CVE-2022-34371: Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0.3, contain an unprotected transport of credentials…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.19, 9.2.1.12, 9.3.0.6, and 9.4.0.3, contain an unprotected transport of credentials vulnerability. A malicious unprivileged network attacker could potentially exploit this vulnerability, leading to full system compromise.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | emc_powerscale_onefs | 9.1.0.0 – 9.1.0.19 | — |
| dell | emc_powerscale_onefs | 9.2.1.0 – 9.2.1.12 | — |
| dell | emc_powerscale_onefs | 9.3.0.0 – 9.3.0.6 | — |
| dell | emc_powerscale_onefs | 9.4.0.0 – 9.4.0.3 | — |
| dell | powerscale_onefs | >= unspecified < 8.2.x, 9.0.0.x, 9.1.0.x, 9.2.0.x, 9.2.1.x, 9.3.0.x. 9.4.0.x, 9.5.0.x | 8.2.x, 9.0.0.x, 9.1.0.x, 9.2.0.x, 9.2.1.x, 9.3.0.x. 9.4.0.x, 9.5.0.x |