CVE-2026-28265
HIGH WAF: High
CVSS 7.1
Published: 2026-04-01
CWE-22
PowerStore, contains a Path Traversal vulnerability in the Service user. A low privileged attacker with local access could potentially exploit this vulnerability, leading to modification of arbitrary system files.
WAF Coverage Analysis
Path Traversal
High WAF Coverage
OWASP: A01:2021 Broken Access Control
930xxx - Local File Inclusion
Affected Software
| Vendor | Product | Version |
|---|---|---|
| dell | powerstoreos | up to 4.4.0.0-2692403 |
References
- www.dell.com (Vendor Advisory)