CVE-2025-36601Sensitive Information Exposure in Dell Powerscale Onefs

CWE-200Sensitive Information Exposure3 documents3 sources
Severity
7.5HIGHNVD
CNA4.0
EPSS
0.0%
top 89.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Dell Powerscale Onefs
Timeline
PublishedSep 25

Description

Dell PowerScale OneFS, versions 9.5.0.0 through 9.11.0.0, contains an exposure of sensitive information to an unauthorized actor vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability, leading to Information disclosure.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

CVEListV5dell/powerscale_onefs9.5.0.09.5.1.4
NVDdell/powerscale_onefs9.8.0.09.10.1.3+3

🔴Vulnerability Details

2
GHSA
GHSA-wgv9-28g5-83xm: Dell PowerScale OneFS, versions 92025-09-25
CVEList
CVE-2025-36601: Dell PowerScale OneFS, versions 92025-09-25
CVE-2025-36601 — Sensitive Information Exposure in Dell | cvebase