Описание
Dell EMC PowerScale OneFS versions 8.2.x - 9.1.0.x contain a use of uninitialized resource vulnerability. This can potentially allow an authenticated user with ISI_PRIV_LOGIN_CONSOLE or ISI_PRIV_LOGIN_SSH privileges to gain access up to 24 bytes of data within the /ifs kernel stack under certain conditions.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 9.0.0.0 (включая) до 9.2.0 (исключая)
Одно из
cpe:2.3:o:dell:emc_powerscale_onefs:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_powerscale_onefs:8.2.2:*:*:*:*:*:*:*
EPSS
Процентиль: 17%
0.00054
Низкий
2.5 Low
CVSS3
3.3 Low
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-908
Связанные уязвимости
CVSS3: 3.3
github
больше 3 лет назад
Dell EMC PowerScale OneFS versions 8.2.x - 9.1.0.x contain a use of uninitialized resource vulnerability. This can potentially allow an authenticated user with ISI_PRIV_LOGIN_CONSOLE or ISI_PRIV_LOGIN_SSH privileges to gain access up to 24 bytes of data within the /ifs kernel stack under certain conditions.
EPSS
Процентиль: 17%
0.00054
Низкий
2.5 Low
CVSS3
3.3 Low
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-908