What is CVE-2026-22278?

CVE-2026-22278 is a high-severity vulnerability in Dell Powerscale Onefs, classified under Improper Restriction of Excessive Authentication Attempts. CVSS score: 8.1/10. Published 2026-01-22.

How severe is CVE-2026-22278?

High severity. CVSS v3 base score is 8.1 out of 10.

Vulnerability in Dell Powerscale Onefs

CVE-2026-22278

Dell PowerScale OneFS versions prior to 9.13.0.0 contains an improper restriction of excessive authentication attempts vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to U…

EPSS: 0.001 (16.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.1 (High). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Dell Powerscale Onefs — versions N/A

Weakness classification (CWE)

CWE-307 — Improper Restriction of Excessive Authentication Attempts

References

www.dell.com/support/kbdoc/en-us/000415586/dsa-2026-049-security-update-for-del… (vendor-advisory)

Frequently asked questions

What is CVE-2026-22278?: CVE-2026-22278 is a high-severity vulnerability in Dell Powerscale Onefs, classified under Improper Restriction of Excessive Authentication Attempts. CVSS score: 8.1/10. Published 2026-01-22.
How severe is CVE-2026-22278?: High severity. CVSS v3 base score is 8.1 out of 10.