Dell

Emc Powerscale Onefs

84 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2021-21592

  • EPSS 0.22%
  • Veröffentlicht 16.08.2021 22:15:07
  • Zuletzt bearbeitet 21.11.2024 05:48:39

Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x improperly handle an exceptional condition. A remote low privileged user could potentially exploit this vulnerability, leading to unauthorized information disclosure.

4.3

CVE-2021-21568

  • EPSS 0.21%
  • Veröffentlicht 16.08.2021 22:15:07
  • Zuletzt bearbeitet 21.11.2024 05:48:36

Dell EMC PowerScale OneFS versions 8.2.x - 9.2.x contain an insufficient logging vulnerability. An authenticated user with ISI_PRIV_LOGIN_PAPI could make un-audited and un-trackable configuration changes to settings that their roles have privileges t...

6.5

CVE-2021-21563

  • EPSS 0.24%
  • Veröffentlicht 03.08.2021 00:15:08
  • Zuletzt bearbeitet 21.11.2024 05:48:36

Dell EMC PowerScale OneFS versions 8.1.2-9.1.0.x contain an Improper Check for Unusual or Exceptional Conditions in its auditing component.This can lead to an authenticated user with low-privileges to trigger a denial of service event.

4.4

CVE-2021-21562

  • EPSS 0.06%
  • Veröffentlicht 03.08.2021 00:15:08
  • Zuletzt bearbeitet 21.11.2024 05:48:36

Dell EMC PowerScale OneFS contains an untrusted search path vulnerability. This vulnerability allows a user with (ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE) and (ISI_PRIV_SYS_UPGRADE or ISI_PRIV_AUDIT) to provide an untrusted path which can lead t...

9

CVE-2020-5353

  • EPSS 0.34%
  • Veröffentlicht 29.07.2021 16:15:08
  • Zuletzt bearbeitet 21.11.2024 05:33:58

The Dell Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 default configuration for Network File System (NFS) allows access to an 'admin' home directory. An attacker may leverage a spoofed Unique Identifier (UID) ov...

8.8

CVE-2020-26180

  • EPSS 0.32%
  • Veröffentlicht 28.07.2021 00:15:07
  • Zuletzt bearbeitet 21.11.2024 05:19:27

Dell EMC Isilon OneFS supported versions 8.1 and later and Dell EMC PowerScale OneFS supported version 9.0.0 contain an access issue with the remotesupport user account. A remote malicious user with low privileges may gain access to data stored on th...

7.2

CVE-2021-21550

  • EPSS 0.05%
  • Veröffentlicht 06.05.2021 13:15:11
  • Zuletzt bearbeitet 21.11.2024 05:48:34

Dell EMC PowerScale OneFS 8.1.0-9.1.0 contain an improper neutralization of special elements used in an OS command vulnerability. This vulnerability can allow an authenticated user with ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE privileges to escal...

7.2

CVE-2021-21527

  • EPSS 0.05%
  • Veröffentlicht 06.05.2021 13:15:11
  • Zuletzt bearbeitet 21.11.2024 05:48:31

Dell PowerScale OneFS 8.1.0-9.1.0 contain an improper neutralization of special elements used in an OS command vulnerability. This vulnerability may allow an authenticated user with ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE privileges to escalate ...

9.1

CVE-2020-26197

  • EPSS 0.16%
  • Veröffentlicht 20.04.2021 17:15:11
  • Zuletzt bearbeitet 21.11.2024 05:19:30

Dell PowerScale OneFS 8.1.0 - 9.1.0 contains an LDAP Provider inability to connect over TLSv1.2 vulnerability. It may make it easier to eavesdrop and decrypt such traffic for a malicious actor. Note: This does not affect clusters which are not relyin...

8.8

CVE-2021-21506

  • EPSS 0.53%
  • Veröffentlicht 08.03.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 05:48:29

PowerScale OneFS 8.1.2,8.2.2 and 9.1.0 contains an improper input sanitization issue in its API handler. An un-authtenticated with ISI_PRIV_SYS_SUPPORT and ISI_PRIV_LOGIN_PAPI privileges could potentially exploit this vulnerability, leading to potent...