CVE-2024-37132

MEDIUM Year: 2024
CVSS v3 Score
6.7
Medium
Weakness Type
CWE-266
View all →

Vulnerability Description

Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an incorrect privilege assignment vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Denial of service and Elevation of privileges.

Related Vulnerabilities

CVE-2022-20855

MEDIUM
CVSS:6.7(Medium)

A vulnerability in the self-healing functionality of Cisco IOS XE Software for Embedded Wireless Controllers on Catalyst Access Points could allow an authenticated, local attacker to escape the restri...

CWE-2662022

CVE-2023-6477

MEDIUM
CVSS:6.7(Medium)

An issue has been discovered in GitLab EE affecting all versions starting from 16.5 before 16.7.6, all versions starting from 16.8 before 16.8.3, all versions starting from 16.9 before 16.9.1. When a ...

CWE-2662023

CVE-2024-27460

MEDIUM
CVSS:6.7(Medium)

A privilege escalation exists in the updater for Plantronics Hub 3.25.1 and below.

CWE-2662024

CVE-2024-37134

MEDIUM
CVSS:6.7(Medium)

Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contain an improper privilege management vulnerability. A local high privileged attacker could potentially exploit this vulnerability to gain roo...

CWE-2662024

CVE-2024-39579

MEDIUM
CVSS:6.7(Medium)

Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contains an incorrect privilege assignment vulnerability. A local high privileged attacker could potentially exploit this vulnerability to gain r...

CWE-2662024

CVE-2025-4692

MEDIUM
CVSS:6.8(Medium)

Actors can use a maliciously crafted JavaScript object notation (JSON) web token (JWT) to perform privilege escalation by submitting the malicious JWT to a vulnerable method exposed on the cloud platf...

CWE-2662025