CVE-2026-22280

Summary

Dell PowerScale OneFS, versions 9.5.0.0 through 9.5.1.5, versions 9.6.0.0 through 9.7.1.10, versions 9.8.0.0 through 9.10.1.3, versions starting from 9.11.0.0 and prior to 9.13.0.0, contains an incorrect permission assignment for critical resource vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to denial of service.

Affected Software

VendorProductVersion RangeStatus
DellPowerScale OneFSN/A < 9.13.0.0affected
DellPowerScale OneFSN/A < 9.5.1.6affected
DellPowerScale OneFSN/A < 9.7.1.11affected
DellPowerScale OneFSN/A < 9.10.1.4affected

Weaknesses

  • CWE-732: CWE-732: Incorrect Permission Assignment for Critical Resource

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References