844 matches found
CVE-2020-26192
Dell EMC PowerScale OneFS versions 8.2.0 - 9.1.0 contain a privilege escalation vulnerability. A non-admin user with either ISIPRIVLOGINCONSOLE or ISIPRIVLOGINSSH may potentially exploit this vulnerability to read arbitrary data, tamper with system software or deny service to users. Note: no...
CVE-2020-26193
Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain an improper input validation vulnerability. A user with the ISIPRIVCLUSTER privilege may exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privileges of the vulnerable...
Input validation
Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain an improper input validation vulnerability. A user with the ISIPRIVCLUSTER privilege may exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privileges of the vulnerable...
Design/Logic Flaw
Dell EMC PowerScale OneFS versions 8.1.2 – 9.1.0 contain an issue where the OneFS SMB directory auto-create may erroneously create a directory for a user. A remote unauthenticated attacker may take advantage of this issue to slow down the system...
CVE-2020-26194
Dell EMC PowerScale OneFS versions 8.1.2 and 8.2.2 contain an Incorrect Permission Assignment for a Critical Resource vulnerability. This may allow a non-admin user with either ISIPRIVLOGINCONSOLE or ISIPRIVLOGINSSH privileges to exploit the vulnerability, leading to compromised cryptographic...
CVE-2020-26192
Dell EMC PowerScale OneFS versions 8.2.0–9.1.0 contain a local privilege-escalation vulnerability. A non-admin user with ISI_PRIV_LOGIN_CONSOLE or ISI_PRIV_LOGIN_SSH could potentially read arbitrary data, tamper with system software, or cause a denial of service. Affected products/versions and pr...
CVE-2020-26193
Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain an improper input validation vulnerability. A user with the ISIPRIVCLUSTER privilege may exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privileges of the vulnerable...
PT-2021-11223 · Dell Emc · Dell Emc Powerscale Onefs
Name of the Vulnerable Software and Affected Versions: Dell EMC PowerScale OneFS versions 8.1.2 through 9.1.0 Description: The issue in Dell EMC PowerScale OneFS allows a remote unauthenticated attacker to potentially slow down the system by exploiting the OneFS SMB directory auto-create feature,...
Dell PowerScale OneFS 授权问题漏洞
Dell Technologies Dell PowerScale OneFS is an operating system from Dell Technologies, USA. PowerScale OneFS operating system that provides horizontal scaling of NAS. An authorization issue vulnerability exists in Dell PowerScale OneFS that stems from ISI PRIV AUTH SSH RBAC privileges for a past...
DELL EMC PowerScale 权限许可和访问控制问题漏洞
Dell EMC PowerScale OneFS is an API-powered file system. An elevation of privilege vulnerability exists in Dell EMC PowerScale OneFS 8.1.0 - 9.1.0. An attacker with the ISIPRIVJOBENGINE privilege could exploit this vulnerability by using a PermissionRepair job to grant themselves the highest leve...
DELL EMC PowerScale 操作系统命令注入漏洞
Dell EMC PowerScale OneFS is an API-powered file system. An OS command injection vulnerability exists in Dell EMC PowerScale OneFS 8.1.0 - 9.1.0. An attacker with the ISIPRIVCLUSTER privilege could exploit this vulnerability to execute arbitrary OS commands on the underlying OS of an application...
DELL EMC PowerScale 访问控制错误漏洞
Dell EMC PowerScale OneFS is an API-powered file system. An elevation of privilege vulnerability exists in Dell EMC PowerScale OneFS 8.2.0 - 9.1.0. An attacker with the ISIPRIVLOGINCONSOLE or ISIPRIVLOGINSSH privileges could exploit this vulnerability to read arbitrary data, tamper with system...
DELL EMC PowerScale 权限许可和访问控制问题漏洞
Dell EMC PowerScale OneFS is an API-powered file system. Dell EMC PowerScale OneFS 8.1.2, 8.2.2 is vulnerable to privilege permission and access control issues. An attacker with ISIPRIVLOGINCONSOLE or ISIPRIVLOGINSSH privileges could exploit this vulnerability to corrupt cryptographic operations...
CVE-2020-26181
Dell EMC Isilon OneFS versions 8.1 and later and Dell EMC PowerScale OneFS version 9.0.0 contain a privilege escalation vulnerability on a SmartLock Compliance mode cluster. The compadmin user connecting using ISI PRIV LOGIN SSH or ISI PRIV LOGIN CONSOLE can elevate privileges to the root user if...
CVE-2020-26181
Dell EMC Isilon OneFS (8.1+) and Dell EMC PowerScale OneFS (9.0.0) expose a local privilege-escalation in SmartLock Compliance mode clusters. The compadmin user who can authenticate via ISI PRIV LOGIN SSH or ISI PRIV LOGIN CONSOLE can elevate to root if they possess ISI PRIV HARDENING privileges....
Dell EMC Isilon OneFS 和 Dell EMC PowerScale 安全漏洞
Dell EMC Isilon OneFS and Dell EMC PowerScale OneFS are both a set of horizontally scalable storage systems for unstructured data from Dell USA. A security vulnerability exists in Dell EMC Isilon OneFS version 8.1 and later and Dell EMC PowerScale OneFS version 9.0.0, which originates from a...
Dell EMC Isilon OneFS and EMC PowerScale OneFS Elevation of Privilege Vulnerabilities
Dell EMC Isilon OneFS and EMC PowerScale OneFS are both horizontally scalable storage systems for unstructured data from Dell, USA. An elevation of privilege vulnerability exists in Dell EMC Isilon OneFS versions prior to 8.2.2 and Dell EMC PowerScale OneFS version 9.0.0, which could be exploited...
CVE-2020-5369
Dell EMC Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 contain a privilege escalation vulnerability. An authenticated malicious user may exploit this vulnerability by using SyncIQ to gain unauthorized access to system management files...
CVE-2020-5369
Dell EMC Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 contain a privilege escalation vulnerability. An authenticated malicious user may exploit this vulnerability by using SyncIQ to gain unauthorized access to system management files...
Privilege escalation
Dell EMC Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 contain a privilege escalation vulnerability. An authenticated malicious user may exploit this vulnerability by using SyncIQ to gain unauthorized access to system management files...