CVE-2023-44288 — Improper Control of a Resource Through its Lifetime in Dell Powerscale Onefs

CWE-664 — Improper Control of a Resource Through its Lifetime3 documents3 sources

Severity

7.5HIGHNVD

EPSS

0.1%

top 66.83%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Dell Powerscale Onefs

Timeline

PublishedDec 5

Description

Dell PowerScale OneFS, 8.2.2.x through 9.6.0.x, contains an improper control of a resource through its lifetime vulnerability. An unauthenticated network attacker could potentially exploit this vulnerability, leading to denial of service.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶NVDdell/powerscale_onefs8.2.2 — 9.6.1

▶CVEListV5dell/powerscale_onefsVersion 8.2.2.x through 9.6.0.x

🔴Vulnerability Details

CVEList

CVE-2023-44288: Dell PowerScale OneFS, 8↗2023-12-05

▶

GHSA

GHSA-jc6w-q9g9-r82q: Dell PowerScale OneFS, 8↗2023-12-05

▶