Dell PowerScale InsightIQ Vulnerable to Two Security Flaws

Recent security assessments have revealed that Dell's PowerScale InsightIQ monitoring tool is susceptible to two significant vulnerabilities. This tool is primarily used by administrators to oversee NAS systems running the PowerScale OneFS operating system.

The vulnerabilities, identified as CVE-2025-30475 and CVE-2025-30476, pose serious security risks. The first vulnerability, classified as high severity, allows unauthorized remote attackers to gain elevated user privileges. The second vulnerability, rated medium, enables potential denial-of-service (DoS) attacks on the impacted systems.

As of now, the exact methods by which these attacks could be executed remain unclear, and there have been no reported incidents of active exploitation. The detailed characteristics that would indicate compromised NAS systems have not been disclosed in the security advisory.

In response to these vulnerabilities, Dell has released security patches designed to mitigate the risks. Users are strongly encouraged to update their systems to version 6.0 or later, which addresses these security flaws effectively.

Maintaining the security of enterprise systems is paramount, and organizations utilizing Dell PowerScale InsightIQ should prioritize applying these updates to safeguard their data and operational integrity.