Isilon Onefs@7.2.1.0 Security Vulnerabilities and Issues — Isilon Onefs@7.2.1.0 CVE List

Lucene search

EmcIsilon Onefs7.2.1.0

11 matches found

CVE•added 2016/05/30 1:59 a.m.•55 views

CVE-2016-0907

EMC Isilon OneFS 7.1.x and 7.2.x before 7.2.1.3 and 8.0.x before 8.0.0.1, and IsilonSD Edge OneFS 8.0.x before 8.0.0.1, does not require SMB signing within a DCERPC session over ncacn_np, which allows man-in-the-middle attackers to spoof SMB clients by modifying the client-server data stream, a sim...

5.9CVSS6.5AI score0.24407EPSS

CVE•added 2015/12/21 5:13 p.m.•41 views

CVE-2015-4545

EMC Isilon OneFS 7.1 before 7.1.1.8, 7.2.0 before 7.2.0.4, and 7.2.1 before 7.2.1.1 allows remote authenticated administrators to bypass a SmartLock root-login restriction by creating a root account and establishing a login session.

9CVSS7.5AI score0.00283EPSS

CVE•added 2017/10/18 9:29 a.m.•38 views

CVE-2017-8024

EMC Isilon OneFS (versions prior to 8.1.0.1, versions prior to 8.0.1.2, versions prior to 8.0.0.6, version 7.2.1.x) is impacted by a reflected cross-site scripting vulnerability that may potentially be exploited by malicious users to compromise the affected system.

6.1CVSS5.9AI score0.0024EPSS

CVE•added 2017/12/13 8:29 p.m.•37 views

CVE-2017-14380

In EMC Isilon OneFS 8.1.0.0, 8.0.1.0 - 8.0.1.1, 8.0.0.0 - 8.0.0.4, 7.2.1.0 - 7.2.1.5, 7.2.0.x, and 7.1.1.x, a malicious compliance admin (compadmin) account user could exploit a vulnerability in isi_get_itrace or isi_get_profile maintenance scripts to run any shell script as system root on a cluste...

7.2CVSS6.6AI score0.00059EPSS

CVE•added 2017/02/03 7:59 a.m.•36 views

CVE-2016-9871

EMC Isilon OneFS 7.2.1.0 - 7.2.1.3, EMC Isilon OneFS 7.2.0.x, EMC Isilon OneFS 7.1.1.0 - 7.1.1.10, EMC Isilon OneFS 7.1.0.x is affected by a privilege escalation vulnerability that could potentially be exploited by attackers to compromise the affected system.

9CVSS7.1AI score0.00499EPSS

CVE•added 2017/03/29 9:59 p.m.•36 views

CVE-2017-4980

EMC Isilon OneFS is affected by a path traversal vulnerability that may potentially be exploited by attackers to compromise the affected system. Affected versions are 7.1.0 - 7.1.1.10, 7.2.0 - 7.2.1.3, and 8.0.0 - 8.0.0.1.

7.5CVSS7.5AI score0.02676EPSS

CVE•added 2016/06/04 1:59 a.m.•34 views

CVE-2016-0908

EMC Isilon OneFS 7.1.x before 7.1.1.9 and 7.2.x before 7.2.1.2 allows local users to obtain root shell access by leveraging administrative privileges.

6.8CVSS6.4AI score0.00127EPSS

CVE•added 2017/05/19 3:29 p.m.•34 views

CVE-2017-4979

EMC Isilon OneFS 8.0.1.0, OneFS 8.0.0.0 - 8.0.0.2, OneFS 7.2.1.0 - 7.2.1.3, and OneFS 7.2.0.x is affected by an NFS export vulnerability. Under certain conditions, after upgrading a cluster from OneFS 7.1.1.x or earlier, users may have unexpected levels of access to some NFS exports.

7.1CVSS6.8AI score0.00349EPSS

CVE•added 2017/06/21 8:29 p.m.•34 views

CVE-2017-4988

EMC Isilon OneFS 8.0.1.0, 8.0.0 - 8.0.0.3, 7.2.0 - 7.2.1.4, 7.1.x is affected by a privilege escalation vulnerability that could potentially be exploited by attackers to compromise the affected system.

9CVSS7.1AI score0.00499EPSS

CVE•added 2015/11/27 2:59 a.m.•31 views

CVE-2015-6848

EMC Isilon OneFS 7.1.x before 7.1.1.5, 7.2.0.x before 7.2.0.3, and 7.2.1.x before 7.2.1.1, when the RFC 2307 feature is configured but SFU is not universally present, allows remote authenticated AD users to obtain root privileges via unspecified vectors.

8.5CVSS6.4AI score0.0037EPSS

CVE•added 2017/01/23 7:59 a.m.•28 views

CVE-2016-9870

EMC Isilon OneFS 8.0.0.0, EMC Isilon OneFS 7.2.1.0 - 7.2.1.2, EMC Isilon OneFS 7.2.0.x, EMC Isilon OneFS 7.1.1.0 - 7.1.1.10, and EMC Isilon OneFS 7.1.0.x is affected by an LDAP injection vulnerability that could potentially be exploited by a malicious user to compromise the system.

7.2CVSS6.5AI score0.00072EPSS