2 matches found
Dell EMC ScaleIO Buffer Overflow / Command Injection Vulnerability
Dell EMC ScaleIO customers are encouraged to update to ScaleIO version 2.5, which contains fixes for multiple security vulnerabilities in earlier ScaleIO software versions that could potentially be exploited by malicious users to compromise the affected system. Dell EMC Identifier: DSA-2018-058 C...
CVE-2018-1205
Dell EMC ScaleIO (pre-2.5) is affected by CVE-2018-1205 due to improper handling of packet data in the MDM service. A remote attacker could exploit crafted packets to crash the MDM service. The CVE is documented with a CVSS v3 base score of 7.5 (HIGH) and CVSS v2 base score of 5.0 (MEDIUM). Publi...