Emc Powerscale Onefs@8.2.1 Security Vulnerabilities and Issues — Emc Powerscale Onefs@8.2.1 CVE List

Lucene search

DellEmc Powerscale Onefs8.2.1

9 matches found

CVE•added 2021/02/09 10:15 p.m.•48 views

CVE-2021-21502

Dell PowerScale OneFS versions 8.1.0 – 9.1.0 contain a "use of SSH key past account expiration" vulnerability. A user on the network with the ISI_PRIV_AUTH_SSH RBAC privilege that has an expired account may potentially exploit this vulnerability, giving them access to the same things they had befor...

9.8CVSS9AI score0.00272EPSS

CVE•added 2021/02/09 10:15 p.m.•44 views

CVE-2020-26192

Dell EMC PowerScale OneFS versions 8.2.0 - 9.1.0 contain a privilege escalation vulnerability. A non-admin user with either ISI_PRIV_LOGIN_CONSOLE or ISI_PRIV_LOGIN_SSH may potentially exploit this vulnerability to read arbitrary data, tamper with system software or deny service to users. Note: no ...

7.8CVSS7.7AI score0.00049EPSS

CVE•added 2021/02/09 10:15 p.m.•44 views

CVE-2020-26193

Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain an improper input validation vulnerability. A user with the ISI_PRIV_CLUSTER privilege may exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privileges of the vulnerable...

7.8CVSS7.8AI score0.00132EPSS

CVE•added 2021/02/09 10:15 p.m.•42 views

CVE-2020-26196

Dell EMC PowerScale OneFS versions 8.1.0-9.1.0 contain a Backup/Restore Privilege implementation issue. A user with the BackupAdmin role may potentially exploit this vulnerability resulting in the ability to write data outside of the intended file system location.

5.5CVSS5.5AI score0.00047EPSS

CVE•added 2021/11/12 11:15 p.m.•42 views

CVE-2021-36305

Dell PowerScale OneFS contains an Unsynchronized Access to Shared Data in a Multithreaded Context in SMB CA handling. An authenticated user of SMB on a cluster with CA could potentially exploit this vulnerability, leading to a denial of service over SMB.

6.5CVSS6.3AI score0.00237EPSS

CVE•added 2021/02/09 10:15 p.m.•41 views

CVE-2020-26195

Dell EMC PowerScale OneFS versions 8.1.2 – 9.1.0 contain an issue where the OneFS SMB directory auto-create may erroneously create a directory for a user. A remote unauthenticated attacker may take advantage of this issue to slow down the system.

5.3CVSS5.4AI score0.01775EPSS

CVE•added 2021/02/09 10:15 p.m.•40 views

CVE-2020-26191

Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain a privilege escalation vulnerability. A user with ISI_PRIV_JOB_ENGINE may use the PermissionRepair job to grant themselves the highest level of RBAC privileges thus being able to read arbitrary data, tamper with system software or deny servic...

7.8CVSS7.7AI score0.00049EPSS

CVE•added 2021/08/03 12:15 a.m.•35 views

CVE-2021-21563

Dell EMC PowerScale OneFS versions 8.1.2-9.1.0.x contain an Improper Check for Unusual or Exceptional Conditions in its auditing component.This can lead to an authenticated user with low-privileges to trigger a denial of service event.

6.5CVSS6.3AI score0.00237EPSS

CVE•added 2021/05/06 1:15 p.m.•34 views

CVE-2021-21550

Dell EMC PowerScale OneFS 8.1.0-9.1.0 contain an improper neutralization of special elements used in an OS command vulnerability. This vulnerability can allow an authenticated user with ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE privileges to escalate privileges.

7.2CVSS6.7AI score0.00054EPSS