Uncontrolled Resource Consumption Vulnerability in Dell PowerScale OneFS
CVE-2024-47239

6.5MEDIUM

Key Information:

Vendor: Dell
Status: Powerscale Onefs
Vendor: CVE Published:; 8 January 2025

Summary

Dell PowerScale OneFS versions ranging from 8.2.2.x to 9.9.0.0 are affected by a vulnerability that allows low privileged remote attackers to exploit the system. This can lead to a denial of service, impacting the availability and functionality of the service. Organizations using the affected versions should apply necessary updates to mitigate potential risks.

Affected Version(s)

PowerScale OneFS 8.2.2.x <= 9.7.1.2

PowerScale OneFS 9.4.0.0 <= 9.4.0.19

PowerScale OneFS 9.5.0.0 <= 9.5.1.1

References

https://www.dell.com/support/kbdoc/en-us/000269590/dsa-20...

vendor-advisory

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 8, 2025
Vulnerability Reserved
Sep 23, 2024