CVE-2022-34378 MEDIUM

CVE-2022-34378

Vendor Dell

Product PowerScale OneFS

Weakness CWE-23

Published September 2, 2022

Last update September 17, 2024

View on NVD All CVEs

CVSS base score

5.5/10

Attack vector Local

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality None

Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

Dell PowerScale OneFS, versions 9.0.0 up to and including 9.1.0.20, 9.2.1.13, 9.3.0.6, and 9.4.0.3, contain a relative path traversal vulnerability. A low privileged local attacker could potentially exploit this vulnerability, leading to denial of service.

Key dates

02Disclosure timeline

September 2, 2022 CVE published

September 17, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2022-34378

Related vulnerabilities

Identifiers

CVE CVE-2022-34378

CWE CWE-23

CVSS 5.5 / MEDIUM

Affected versions