Isilon Onefs@7.1.1.1 Security Vulnerabilities and Issues — Isilon Onefs@7.1.1.1 CVE List

Lucene search

EmcIsilon Onefs7.1.1.1

11 matches found

CVE•added 2016/05/30 1:59 a.m.•55 views

CVE-2016-0907

EMC Isilon OneFS 7.1.x and 7.2.x before 7.2.1.3 and 8.0.x before 8.0.0.1, and IsilonSD Edge OneFS 8.0.x before 8.0.0.1, does not require SMB signing within a DCERPC session over ncacn_np, which allows man-in-the-middle attackers to spoof SMB clients by modifying the client-server data stream, a sim...

5.9CVSS6.5AI score0.24407EPSS

CVE•added 2015/12/21 5:13 p.m.•41 views

CVE-2015-4545

EMC Isilon OneFS 7.1 before 7.1.1.8, 7.2.0 before 7.2.0.4, and 7.2.1 before 7.2.1.1 allows remote authenticated administrators to bypass a SmartLock root-login restriction by creating a root account and establishing a login session.

9CVSS7.5AI score0.00283EPSS

CVE•added 2017/12/13 8:29 p.m.•37 views

CVE-2017-14380

In EMC Isilon OneFS 8.1.0.0, 8.0.1.0 - 8.0.1.1, 8.0.0.0 - 8.0.0.4, 7.2.1.0 - 7.2.1.5, 7.2.0.x, and 7.1.1.x, a malicious compliance admin (compadmin) account user could exploit a vulnerability in isi_get_itrace or isi_get_profile maintenance scripts to run any shell script as system root on a cluste...

7.2CVSS6.6AI score0.00059EPSS

CVE•added 2017/02/03 7:59 a.m.•36 views

CVE-2016-9871

EMC Isilon OneFS 7.2.1.0 - 7.2.1.3, EMC Isilon OneFS 7.2.0.x, EMC Isilon OneFS 7.1.1.0 - 7.1.1.10, EMC Isilon OneFS 7.1.0.x is affected by a privilege escalation vulnerability that could potentially be exploited by attackers to compromise the affected system.

9CVSS7.1AI score0.00499EPSS

CVE•added 2017/03/29 9:59 p.m.•36 views

CVE-2017-4980

EMC Isilon OneFS is affected by a path traversal vulnerability that may potentially be exploited by attackers to compromise the affected system. Affected versions are 7.1.0 - 7.1.1.10, 7.2.0 - 7.2.1.3, and 8.0.0 - 8.0.0.1.

7.5CVSS7.5AI score0.02676EPSS

CVE•added 2015/03/29 10:59 a.m.•35 views

CVE-2015-0528

The RPC daemon in EMC Isilon OneFS 6.5.x and 7.0.x before 7.0.2.13, 7.1.0 before 7.1.0.6, 7.1.1 before 7.1.1.2, and 7.2.0 before 7.2.0.1 allows local users to gain privileges by leveraging an ability to modify system files.

7.2CVSS6.7AI score0.00069EPSS

CVE•added 2016/06/04 1:59 a.m.•34 views

CVE-2016-0908

EMC Isilon OneFS 7.1.x before 7.1.1.9 and 7.2.x before 7.2.1.2 allows local users to obtain root shell access by leveraging administrative privileges.

6.8CVSS6.4AI score0.00127EPSS

CVE•added 2017/06/21 8:29 p.m.•34 views

CVE-2017-4988

EMC Isilon OneFS 8.0.1.0, 8.0.0 - 8.0.0.3, 7.2.0 - 7.2.1.4, 7.1.x is affected by a privilege escalation vulnerability that could potentially be exploited by attackers to compromise the affected system.

9CVSS7.1AI score0.00499EPSS

CVE•added 2015/11/27 2:59 a.m.•31 views

CVE-2015-6848

EMC Isilon OneFS 7.1.x before 7.1.1.5, 7.2.0.x before 7.2.0.3, and 7.2.1.x before 7.2.1.1, when the RFC 2307 feature is configured but SFU is not universally present, allows remote authenticated AD users to obtain root privileges via unspecified vectors.

8.5CVSS6.4AI score0.0037EPSS

CVE•added 2017/01/23 7:59 a.m.•28 views

CVE-2016-9870

EMC Isilon OneFS 8.0.0.0, EMC Isilon OneFS 7.2.1.0 - 7.2.1.2, EMC Isilon OneFS 7.2.0.x, EMC Isilon OneFS 7.1.1.0 - 7.1.1.10, and EMC Isilon OneFS 7.1.0.x is affected by an LDAP injection vulnerability that could potentially be exploited by a malicious user to compromise the system.

7.2CVSS6.5AI score0.00072EPSS

CVE•added 2015/07/04 10:59 a.m.•26 views

CVE-2015-4525

The log-gather implementation in the web administration interface in EMC Isilon OneFS 6.5.x.x through 7.1.1.x before 7.1.1.5 and 7.2.0.x before 7.2.0.2 allows remote authenticated users to execute arbitrary commands with root privileges via unspecified vectors.

9CVSS7.5AI score0.00632EPSS