CVE-2026-21422 | THREATINT

Description

Dell PowerScale OneFS, versions 9.10.0.0 through 9.10.1.5 and versions 9.11.0.0 through 9.12.0.1, contains an external control of system or configuration setting vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to protection mechanism bypass.

PUBLISHED Reserved 2025-12-24 | Published 2026-03-04 | Updated 2026-03-04 | Assigner dell

LOW: 3.4CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L

Problem types

CWE-15: External Control of System or Configuration Setting

Product status

Default status

unaffected

9.11.0.0 through 9.12.0.1 (semver) before 9.13.0.0 or later

affected

9.10.0.0 through 9.10.1.5 (semver) before 9.10.1.6 or later

affected

References

www.dell.com/...ll-powerscale-onefs-multiple-vulnerabilities vendor-advisory

cve.org (CVE-2026-21422)

nvd.nist.gov (CVE-2026-21422)

Download JSON