Vulnerability Details CVE-2023-22574
Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log file vulnerability in platform API of IPMI module. A low-privileged user with permission to read logs on the cluster could potentially exploit this vulnerability, leading to Information disclosure and denial of service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 48.9%
CVSS Severity
CVSS v3 Score 8.1
References
Products affected by CVE-2023-22574
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.1.0.0
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.1.0.21
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.1.0.24
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.1.0.25
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.1.0.26
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.2.1.0
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.2.1.17
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.2.1.18
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.2.1.19
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.4.0.0
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.4.0.10
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.4.0.2
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.4.0.8
-
cpe:2.3:o:dell:emc_powerscale_onefs:9.4.0.9