Dell

Emc Powerscale Onefs

84 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2021-21503

  • EPSS 0.12%
  • Published 08.03.2021 22:15:13
  • Last modified 21.11.2024 05:48:29

PowerScale OneFS 8.1.2,8.2.2 and 9.1.0 contains an improper input sanitization issue in a command. The Compadmin user could potentially exploit this vulnerability, leading to potential privileges escalation.

5.3

CVE-2020-26195

  • EPSS 1.78%
  • Published 09.02.2021 22:15:13
  • Last modified 21.11.2024 05:19:29

Dell EMC PowerScale OneFS versions 8.1.2 – 9.1.0 contain an issue where the OneFS SMB directory auto-create may erroneously create a directory for a user. A remote unauthenticated attacker may take advantage of this issue to slow down the system.

7.8

CVE-2020-26191

  • EPSS 0.05%
  • Published 09.02.2021 22:15:13
  • Last modified 21.11.2024 05:19:29

Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain a privilege escalation vulnerability. A user with ISI_PRIV_JOB_ENGINE may use the PermissionRepair job to grant themselves the highest level of RBAC privileges thus being able to read arbitrary...

7.8

CVE-2020-26192

  • EPSS 0.05%
  • Published 09.02.2021 22:15:13
  • Last modified 21.11.2024 05:19:29

Dell EMC PowerScale OneFS versions 8.2.0 - 9.1.0 contain a privilege escalation vulnerability. A non-admin user with either ISI_PRIV_LOGIN_CONSOLE or ISI_PRIV_LOGIN_SSH may potentially exploit this vulnerability to read arbitrary data, tamper with sy...

7.8

CVE-2020-26193

  • EPSS 0.13%
  • Published 09.02.2021 22:15:13
  • Last modified 21.11.2024 05:19:29

Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain an improper input validation vulnerability. A user with the ISI_PRIV_CLUSTER privilege may exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's und...

7.8

CVE-2020-26194

  • EPSS 0.05%
  • Published 09.02.2021 22:15:13
  • Last modified 21.11.2024 05:19:29

Dell EMC PowerScale OneFS versions 8.1.2 and 8.2.2 contain an Incorrect Permission Assignment for a Critical Resource vulnerability. This may allow a non-admin user with either ISI_PRIV_LOGIN_CONSOLE or ISI_PRIV_LOGIN_SSH privileges to exploit the vu...

5.5

CVE-2020-26196

  • EPSS 0.05%
  • Published 09.02.2021 22:15:13
  • Last modified 21.11.2024 05:19:30

Dell EMC PowerScale OneFS versions 8.1.0-9.1.0 contain a Backup/Restore Privilege implementation issue. A user with the BackupAdmin role may potentially exploit this vulnerability resulting in the ability to write data outside of the intended file sy...

9.8

CVE-2021-21502

  • EPSS 0.27%
  • Published 09.02.2021 22:15:13
  • Last modified 21.11.2024 05:48:29

Dell PowerScale OneFS versions 8.1.0 – 9.1.0 contain a "use of SSH key past account expiration" vulnerability. A user on the network with the ISI_PRIV_AUTH_SSH RBAC privilege that has an expired account may potentially exploit this vulnerability, giv...

7.8

CVE-2020-26181

  • EPSS 0.04%
  • Published 05.01.2021 22:15:13
  • Last modified 21.11.2024 05:19:28

Dell EMC Isilon OneFS versions 8.1 and later and Dell EMC PowerScale OneFS version 9.0.0 contain a privilege escalation vulnerability on a SmartLock Compliance mode cluster. The compadmin user connecting using ISI PRIV LOGIN SSH or ISI PRIV LOGIN CON...

8.8

CVE-2020-5369

  • EPSS 0.46%
  • Published 02.09.2020 21:15:12
  • Last modified 21.11.2024 05:34:00

Dell EMC Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 contain a privilege escalation vulnerability. An authenticated malicious user may exploit this vulnerability by using SyncIQ to gain unauthorized access to s...