Sensitive Information Disclosure in Dell PowerScale OneFS
CVE-2026-24511

4.4MEDIUM

Key Information:

Vendor: Dell
Status: Powerscale Onefs
Vendor: CVE Published:; 8 April 2026

What is CVE-2026-24511?

Dell PowerScale OneFS suffers from a vulnerability whereby a generation of error messages can contain sensitive information. A privileged user with local access might exploit this flaw to disclose potentially sensitive information, posing a risk to data confidentiality. This issue affects multiple versions of Dell PowerScale OneFS, necessitating timely intervention and patching to mitigate risks.

Affected Version(s)

PowerScale OneFS 0 < 9.10.1.7 or later

References

https://www.dell.com/support/kbdoc/en-us/000449337/dsa-20...

vendor-advisory

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 8, 2026
Vulnerability Reserved
Jan 23, 2026

CVE-2026-24511 Data

JSON