Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.8
Dell PowerScale OneFS: Unprivileged User Can Gain Admin Access
CVE-2026-21425
Summary
Versions of Dell PowerScale OneFS before 9.10.1.6 and 9.11.0.0 to 9.12.0.1 have a security issue that allows a regular user to gain administrative access. This means an attacker could potentially take control of the system. Update to version 9.10.1.6 or later or 9.12.0.2 or later to fix this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| dell | powerscale_onefs | <= 9.10.1.6 | – |
| dell | powerscale_onefs | > 9.11.0.0 , <= 9.13.0.0 | – |
Original title
Dell PowerScale OneFS, versions prior to 9.10.1.6 and versions 9.11.0.0 through 9.12.0.1, contains an incorrect privilege assignment vulnerability. A low privileged attacker with local access could...
Original description
Dell PowerScale OneFS, versions prior to 9.10.1.6 and versions 9.11.0.0 through 9.12.0.1, contains an incorrect privilege assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.
nvd CVSS3.1
7.8
Vulnerability type
CWE-266
Incorrect Privilege Assignment
Published: 4 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026