Improper Authorization in Dell PowerScale OneFS: Sensitive Data Disclosure and Modification

Improper Authorization in Dell PowerScale OneFS: Sensitive Data Disclosure and Modification

CVE-2022-22565 · LOW Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N

Dell PowerScale OneFS, versions 9.0.0-9.3.0, contain an improper authorization of index containing sensitive information. An authenticated and privileged user could potentially exploit this vulnerability, leading to disclosure or modification of sensitive data.

Learn more about our User Device Pen Test.