Rewterz Threat Advisory – CVE-2022-29098 – Dell EMC PowerScale OneFS Vulnerability

Rewterz Threat Advisory – Multiple GitLab Community and Enterprise Edition Vulnerabilities

June 6, 2022

Rewterz Threat Advisory – Multiple Dell Wyse Management Suite Vulnerabilities

June 6, 2022

Rewterz Threat Advisory – CVE-2022-29098 – Dell EMC PowerScale OneFS Vulnerability

Severity

High

Analysis Summary

CVE-2022-29098

Dell EMC PowerScale OneFS could allow a remote attacker to bypass security restrictions, caused by weak password requirements. An attacker could exploit this vulnerability to create an account without requiring a password, leading to a user account compromise.

Impact

Security Bypass

Indicators Of Compromise

CVE

CVE-2022-29098

Affected Vendors

Dell

Affected Products

Dell EMC PowerScale OneFS 9.0.0
Dell EMC PowerScale OneFS 8.2.0
Dell EMC PowerScale OneFS 8.8.0
Dell EMC PowerScale OneFS 8.2.2

Remediation

Refer to Dell DSA Advisory for patch, upgrade or suggested workaround information.

Dell DSA Advisory

Rewterz Threat Advisory – Multiple GitLab Community and Enterprise Edition Vulnerabilities

Rewterz Threat Advisory – Multiple Dell Wyse Management Suite Vulnerabilities

Rewterz Threat Advisory – CVE-2022-29098 – Dell EMC PowerScale OneFS Vulnerability

Severity

Analysis Summary

CVE-2022-29098

Impact

Indicators Of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan