Dell PowerScale OneFS, versions 8.2.x through 9.3.x contain a weak encoding for a password. A malicious local privileged attacker may potentially exploit this vulnerability, leading to information disclosure.
Obscuring a password with a trivial encoding does not protect the password.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Powerscale_onefs | Dell | 8.2.0 (including) | 8.2.0 (including) |
Powerscale_onefs | Dell | 8.2.1 (including) | 8.2.1 (including) |
Powerscale_onefs | Dell | 8.2.2 (including) | 8.2.2 (including) |
Powerscale_onefs | Dell | 9.0.0 (including) | 9.0.0 (including) |
Powerscale_onefs | Dell | 9.1.0 (including) | 9.1.0 (including) |
Powerscale_onefs | Dell | 9.1.1 (including) | 9.1.1 (including) |
Powerscale_onefs | Dell | 9.2.0 (including) | 9.2.0 (including) |
Powerscale_onefs | Dell | 9.2.1 (including) | 9.2.1 (including) |
Powerscale_onefs | Dell | 9.3.0 (including) | 9.3.0 (including) |