CVE-2025-43723 MEDIUM

CVE-2025-43723

Vendor Dell
Product PowerScale OneFS
Weakness CWE-327 · Broken crypto
Published November 10, 2025
Last update November 10, 2025

CVSS base score

5.9/10
Attack vector Network
Attack complexity High
Privileges required None
User interaction None
Confidentiality High
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

What the vulnerability does

01Description

Dell PowerScale OneFS, versions prior to 9.10.1.3 and versions 9.11.0.0 through 9.12.0.0, contains a use of a broken or risky cryptographic algorithm vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure.

Key dates

02Disclosure timeline

November 10, 2025 CVE published
November 10, 2025 Record updated