Privilege Escalation Vulnerability in Dell PowerScale OneFS
CVE-2024-32853

7.8HIGH

Key Information:

Vendor: Dell
Status: Powerscale Onefs
Vendor: CVE Published:; 2 July 2024

What is CVE-2024-32853?

A vulnerability exists in Dell PowerScale OneFS, specifically in versions ranging from 8.2.2.x to 9.7.0.2, that allows local low-privileged attackers to exploit an execution method with unnecessary privileges. This vulnerability can facilitate the escalation of privileges, potentially granting unauthorized access to sensitive system resources. It is crucial for administrators to apply appropriate security patches and updates to mitigate the risks associated with this vulnerability. For remediation guidelines, please refer to the security update documentation provided by Dell.

References

https://www.dell.com/support/kbdoc/en-us/000226569/dsa-20...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 2, 2024