Improper Link Resolution Vulnerability in Dell PowerScale OneFS 9.5.0.0

Improper Link Resolution Vulnerability in Dell PowerScale OneFS 9.5.0.0

CVE-2023-25940 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Dell PowerScale OneFS version 9.5.0.0 contains improper link resolution before file access vulnerability in isi_gather_info. A high privileged local attacker could potentially exploit this vulnerability, leading to system takeover and it breaks the compliance mode guarantees.

Learn more about our Web Application Penetration Testing UK.