Описание
Dell EMC Isilon OneFS supported versions 8.1 and later and Dell EMC PowerScale OneFS supported version 9.0.0 contain an access issue with the remotesupport user account. A remote malicious user with low privileges may gain access to data stored on the /ifs directory through most protocols.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 8.1.0 (включая)
Одно из
cpe:2.3:a:dell:emc_isilon_onefs:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_powerscale_onefs:9.0.0:*:*:*:*:*:*:*
EPSS
Процентиль: 55%
0.00319
Низкий
6.3 Medium
CVSS3
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-276
CWE-276
Связанные уязвимости
github
больше 3 лет назад
Dell EMC Isilon OneFS supported versions 8.1 and later and Dell EMC PowerScale OneFS supported version 9.0.0 contain an access issue with the remotesupport user account. A remote malicious user with low privileges may gain access to data stored on the /ifs directory through most protocols.
EPSS
Процентиль: 55%
0.00319
Низкий
6.3 Medium
CVSS3
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-276
CWE-276