March 12, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – CVE-2023-39248 – Dell OS10 Networking Switches Vulnerability
December 6, 2023Rewterz Threat Advisory – Multiple Dell Rugged Control Center Vulnerabilities
December 6, 2023Rewterz Threat Advisory – CVE-2023-39248 – Dell OS10 Networking Switches Vulnerability
December 6, 2023Rewterz Threat Advisory – Multiple Dell Rugged Control Center Vulnerabilities
December 6, 2023
Severity
Medium
Analysis Summary
CVE-2023-44288 CVSS:7.5
Dell PowerScale OneFS is vulnerable to a denial of service, caused by improper control of a resource through its lifetime vulnerability. A remote attacker could exploit this vulnerability to cause a denial of service.
CVE-2023-44295 CVSS:6.3
Dell PowerScale OneFS could allow a local authenticated attacker to obtain sensitive information, caused by an improper control of a resource through its lifetime vulnerability. An attacker could exploit this vulnerability to obtain sensitive information.
Impact
- Denial of Service
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2023-44288
- CVE-2023-44295
Affected Vendors
Dell
Affected Products
- Dell EMC PowerScale OneFS 8.2.2
- Dell EMC PowerScale OneFS 9.1.0
- Dell EMC PowerScale OneFS 9.2.0
- Dell EMC PowerScale OneFS 9.2.1
- Dell EMC PowerScale OneFS 9.3.0
- Dell EMC PowerScale OneFS 9.4.0
- Dell PowerScale OneFS 9.5.0
- Dell PowerScale OneFS 9.0.0
- Dell PowerScale OneFS 8.2.0
Remediation
Refer to Dell Security Advisory for patch, upgrade or suggested workaround information.