Integer Overflow Vulnerability in Dell PowerScale OneFS
CVE-2025-22471

6.5MEDIUM

Key Information:

Vendor: Dell
Status: Powerscale Onefs
Vendor: CVE Published:; 10 April 2025

Summary

Dell PowerScale OneFS, spanning versions 9.4.0.0 to 9.10.0.1, is susceptible to an integer overflow or wraparound vulnerability. This flaw allows an unauthenticated attacker with remote access to potentially exploit the weakness, which may result in a denial of service. It is crucial for users to update their systems and monitor for any unusual activities to mitigate risks associated with this vulnerability.

Affected Version(s)

PowerScale OneFS 9.4.0.0 <= 9.10.0.1

PowerScale OneFS 9.4.0.0 <= 9.4.0.20

PowerScale OneFS 9.5.0.0 <= 9.5.1.2

References

https://www.dell.com/support/kbdoc/en-us/000300860/dsa-20...

vendor-advisory

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Apr 10, 2025
Vulnerability Reserved
Jan 7, 2025