Описание
Dell PowerScale OneFS 8.2.2 and above contain an elevation of privilege vulnerability. A local attacker with ISI_PRIV_LOGIN_SSH and/or ISI_PRIV_LOGIN_CONSOLE could potentially exploit this vulnerability, leading to elevation of privilege. This could potentially allow users to circumvent PowerScale Compliance Mode guarantees.
Ссылки
- Permissions RequiredVendor Advisory
- Permissions RequiredVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 8.2.2 (включая) до 9.3.0 (включая)
cpe:2.3:o:dell:emc_powerscale_onefs:*:*:*:*:*:*:*:*
EPSS
Процентиль: 16%
0.00051
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-378
CWE-668
Связанные уязвимости
CVSS3: 7.8
github
почти 4 года назад
Dell PowerScale OneFS 8.2.2 and above contain an elevation of privilege vulnerability. A local attacker with ISI_PRIV_LOGIN_SSH and/or ISI_PRIV_LOGIN_CONSOLE could potentially exploit this vulnerability, leading to elevation of privilege. This could potentially allow users to circumvent PowerScale Compliance Mode guarantees.
EPSS
Процентиль: 16%
0.00051
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-378
CWE-668