Uncontrolled Resource Consumption Vulnerability in Dell PowerScale OneFS
CVE-2024-42426

6.5MEDIUM

Key Information:

Vendor: Dell
Status: Powerscale Onefs
Vendor: CVE Published:; 9 December 2024

What is CVE-2024-42426?

Dell PowerScale OneFS, spanning versions 9.5.0.x to 9.8.0.x, is susceptible to an uncontrolled resource consumption vulnerability. This flaw allows a remote attacker with low privileges to exploit the system, potentially resulting in a denial of service. Such vulnerabilities pose significant risks, as they can disrupt normal operations and affect the overall security posture of affected deployments. Organizations using these versions of PowerScale OneFS should seek to implement the necessary security updates to mitigate this issue, ensuring their systems remain secure and perform effectively.

References

https://www.dell.com/support/kbdoc/en-in/000256645/dsa-20...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 9, 2024