CVE-2026-22278

HIGH

Dell Powerscale Onefs < 9.13.0.0 - Brute Force

Title source: rule

Description

Dell PowerScale OneFS versions prior to 9.13.0.0 contains an improper restriction of excessive authentication attempts vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access.

References (1)

[Vendor Advisory] https://www.dell.com/support/kbdoc/en-us/000415586/dsa-2026-049-security-update-for-dell-powerscale-onefs-multiple-vulnerabilities

Scores

CVSS v3 8.1

EPSS 0.0005

EPSS Percentile 15.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-307

Status published

Products (1)

dell/powerscale_onefs < 9.13.0.0

Published Jan 22, 2026

Tracked Since Feb 18, 2026