CVE-2026-21421
Received
Received - Intake
Privilege Escalation in Dell PowerScale OneFS via Excessive Privileges
Publication date: 2026-03-04
Last updated on: 2026-03-04
Assigner: Dell
Description
Description
Dell PowerScale OneFS, versions prior to 9.10.1.6 and versions 9.11.0.0 through 9.12.0.1, contains an execution with unnecessary privileges vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to elevation of privileges.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| dell | powerscale_onefs | to 9.10.1.6 (exc) |
| dell | powerscale_onefs | From 9.11.0.0 (inc) to 9.13.0.0 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-250 | The product performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses. |
