CVE-2024-37132

Summary

Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an incorrect privilege assignment vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Denial of service and Elevation of privileges.

Affected Software

VendorProductVersion RangeStatus
DellPowerScale OneFS8.2.2.x <= 9.5.0.8affected
DellPowerScale OneFS8.2.2.x <= 9.7.0.0affected
DellPowerScale OneFS9.7.0.1 <= 9.7.0.2affected
DellPowerScale OneFS9.7.0.3affected
DellPowerScale OneFS9.8.0.0affected

Weaknesses

  • CWE-266: CWE-266: Incorrect Privilege Assignment

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References