CVE-2022-34438
published 2022-10-21CVE-2022-34438: Dell PowerScale OneFS, versions 8.2.x-9.4.0.x, contain a privilege context switching error. A local authenticated malicious user with high privileges could…
medium6.7CVSS 3.1
AVLACLPRHUINSUCHIHAH
Dell PowerScale OneFS, versions 8.2.x-9.4.0.x, contain a privilege context switching error. A local authenticated malicious user with high privileges could potentially exploit this vulnerability, leading to full system compromise. This impacts compliance mode clusters.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dell | emc_powerscale_onefs | 9.1.0.0 – 9.1.0.22 | — |
| dell | emc_powerscale_onefs | 9.2.1.0 – 9.2.1.15 | — |
| dell | emc_powerscale_onefs | 9.3.0.0 – 9.3.0.7 | — |
| dell | emc_powerscale_onefs | 9.4.0.0 – 9.4.0.5 | — |
| dell | powerscale_onefs | >= unspecified < 9.4.0.x | 9.4.0.x |