CVE-2025-26480Allocation of Resources Without Limits or Throttling in Dell Powerscale Onefs

CWE-770Allocation of Resources Without Limits or Throttling3 documents3 sources
Severity
7.5HIGHNVD
CNA5.3
EPSS
0.2%
top 54.15%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Dell Powerscale Onefs
Timeline
PublishedApr 10

Description

Dell PowerScale OneFS, versions 9.5.0.0 through 9.10.0.0, contains an uncontrolled resource consumption vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to denial of service.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

CVEListV5dell/powerscale_onefs9.7.0.09.7.1.4+2
NVDdell/powerscale_onefs9.5.0.09.10.0.0

🔴Vulnerability Details

2
GHSA
GHSA-pqrf-m72x-vgx9: Dell PowerScale OneFS, versions 92025-04-10
CVEList
CVE-2025-26480: Dell PowerScale OneFS, versions 92025-04-10
CVE-2025-26480 — Dell Powerscale Onefs vulnerability | cvebase