CVE-2026-25907

MEDIUM

Dell PowerScale OneFS 9.13.0.0 - DoS

Title source: llm

Description

Dell PowerScale OneFS, version 9.13.0.0, contains an overly restrictive account lockout mechanism vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to denial of service.

References (1)

[Various Sources] https://www.dell.com/support/kbdoc/en-sg/000434591/dsa-2026-095-security-update-for-dell-powerscale-onefs-overly-restrictive-account-lockout-mechanism-vulnerability

Scores

CVSS v3 5.3

EPSS 0.0005

EPSS Percentile 13.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Classification

CWE

CWE-645

Status published

Affected Products (1)

dell/powerscale_onefs

Timeline

Published Mar 04, 2026

Tracked Since Mar 04, 2026