Vulnerability Details CVE-2022-45099
Dell PowerScale OneFS, versions 8.2.x-9.4.x, contain a weak encoding for a NDMP password. A malicious and privileged local attacker could potentially exploit this vulnerability, leading to a full system compromise
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 12.1%
CVSS Severity
CVSS v3 Score 7.8
Products affected by CVE-2022-45099
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.1.0.0
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.1.0.21
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.2.1.0
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.2.1.17
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.3.0.0
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.3.0.6
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.4.0.0
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.4.0.2
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.4.0.8