CNNVD-202506-2670 Information

Jun 20, 2025 cve

CNNVD ID

CNNVD-202506-2670

CVE-2025-32753

CNNVD Published: 2025-06-20

Description (Chinese)

Dell PowerScale OneFS是美国戴尔（Dell）公司的一个操作系统。提供横向扩展NAS的PowerScale OneFS操作系统。 Dell PowerScale OneFS 9.5.0.0至9.10.0.1版本存在SQL注入漏洞，该漏洞源于SQL命令中特殊元素中和不当，可能导致拒绝服务、信息泄露和信息篡改。

Description (English)

Dell PowerScale OneFS is an operating system of Dell, United States. PowerScale OneFS operating system that provides horizontal extension of NAS. Dell PowerScale OneFS 9.5.0.0 to 9.10.0.1 contains an injection loophole in SQL, which originates from the misalignment of special elements in SQL orders and may lead to the denial of services, the disclosure of information and the alteration of information.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

戴尔

Published

2025-06-20

Last Modified

2026-02-24

References

https://www.dell.com/support/kbdoc/en-us/000326339/dsa-2025-208-security-update-for-dell-powerscale-onefs-for-multiple-security-vulnerabilities

Patch

https://www.dell.com/support/kbdoc/en-us/000326339/dsa-2025-208-security-update-for-dell-powerscale-onefs-for-multiple-security-vulnerabilities

Share on: