Improper Privilege Management in Dell PowerScale OneFS Products
CVE-2024-32854

6.7MEDIUM

Key Information:

Vendor: Dell
Status: Powerscale Onefs
Vendor: CVE Published:; 2 July 2024

Summary

The PowerScale OneFS software by Dell is susceptible to an improper privilege management issue. A local attacker with high privileges may exploit this vulnerability to execute unauthorized actions, potentially leading to unauthorized privilege escalation. It is crucial for organizations using affected versions to apply security updates promptly to mitigate this risk.

References

https://www.dell.com/support/kbdoc/en-us/000226569/dsa-20...

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 2, 2024