CVE-2022-24411

High

Dell PowerScale OneFS 8.2.2 and above contain an elevation of privilege vulnerability. A local attacker with ISI_PRIV_LOGIN_SSH and/or…

dell·CWE-378·Published 2022-04-12

CVSS

7.8

EPSS

0.00

KEV

Exploits

cve.orgen

326 chars

Dell PowerScale OneFS 8.2.2 and above contain an elevation of privilege vulnerability. A local attacker with ISI_PRIV_LOGIN_SSH and/or ISI_PRIV_LOGIN_CONSOLE could potentially exploit this vulnerability, leading to elevation of privilege. This could potentially allow users to circumvent PowerScale Compliance Mode guarantees.

NVDen

326 chars

NVDes

350 chars

Dell PowerScale OneFS versiones 8.2.2 y superiores, contienen una vulnerabilidad de elevación de privilegios. Un atacante local con ISI_PRIV_LOGIN_SSH y/o ISI_PRIV_LOGIN_CONSOLE podría explotar esta vulnerabilidad, conllevando a una elevación de privilegios. Esto podría permitir a usuarios omitir las garantías del modo de cumplimiento de PowerScale

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	4.6	3.9	6.4	AV:L/AC:L/Au:N/C:P/I:P/A:P
3.1	Primary	cve.org	7.8	—	—	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H