Dell PowerScale OneFS versions 8.2.2.x through 9.7.0.x contains a cleartext transmission of sensitive information vulnerability. A local low privileged attacker could potentially exploit this vulnerability, leading to escalation of privileges.
References
Configurations
Configuration 1 (hide)
|
History
09 Jan 2025, 16:24
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Dell
Dell powerscale Onefs |
|
| CPE | cpe:2.3:a:dell:powerscale_onefs:*:*:*:*:*:*:*:* | |
| References | () https://www.dell.com/support/kbdoc/en-us/000223366/dsa-2024-115-security-update-for-dell-powerscale-onefs-for-multiple-security-vulnerabilities - Vendor Advisory |
21 Nov 2024, 09:01
| Type | Values Removed | Values Added |
|---|---|---|
| Summary |
|
|
| References | () https://www.dell.com/support/kbdoc/en-us/000223366/dsa-2024-115-security-update-for-dell-powerscale-onefs-for-multiple-security-vulnerabilities - |
28 Mar 2024, 19:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-03-28 19:15
Updated : 2025-01-09 16:24
NVD link : CVE-2024-25960
Mitre link : CVE-2024-25960
CVE.ORG link : CVE-2024-25960
JSON object : View
Products Affected
dell
- powerscale_onefs
CWE
CWE-319
Cleartext Transmission of Sensitive Information