Vulnerabilities > Dell > EMC Isilon Onefs

DATE CVE VULNERABILITY TITLE RISK
2022-10-21 CVE-2020-5355 Incorrect Default Permissions vulnerability in Dell EMC Isilon Onefs
The Dell Isilon OneFS versions 8.2.2 and earlier SSHD process improperly allows Transmission Control Protocol (TCP) and stream forwarding.
network
low complexity
dell CWE-276
4.3
2021-07-29 CVE-2020-5353 Incorrect Default Permissions vulnerability in Dell EMC Isilon Onefs and EMC Powerscale Onefs
The Dell Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 default configuration for Network File System (NFS) allows access to an 'admin' home directory.
network
low complexity
dell CWE-276
8.8
2021-07-28 CVE-2020-26180 Incorrect Default Permissions vulnerability in Dell EMC Isilon Onefs and EMC Powerscale Onefs
Dell EMC Isilon OneFS supported versions 8.1 and later and Dell EMC PowerScale OneFS supported version 9.0.0 contain an access issue with the remotesupport user account.
network
low complexity
dell CWE-276
8.8
2021-01-05 CVE-2020-26181 Unspecified vulnerability in Dell EMC Isilon Onefs and EMC Powerscale Onefs
Dell EMC Isilon OneFS versions 8.1 and later and Dell EMC PowerScale OneFS version 9.0.0 contain a privilege escalation vulnerability on a SmartLock Compliance mode cluster.
local
low complexity
dell
7.8
2020-09-02 CVE-2020-5369 Incorrect Permission Assignment for Critical Resource vulnerability in Dell EMC Isilon Onefs and EMC Powerscale Onefs
Dell EMC Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 contain a privilege escalation vulnerability.
network
low complexity
dell CWE-732
8.8
2020-07-06 CVE-2020-5371 Incorrect Permission Assignment for Critical Resource vulnerability in Dell EMC Isilon Onefs and EMC Powerscale Onefs
Dell EMC Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale version 9.0.0 contain a file permissions vulnerability.
network
low complexity
dell CWE-732
8.8
2020-05-20 CVE-2020-5365 Use of Insufficiently Random Values vulnerability in Dell EMC Isilon Onefs
Dell EMC Isilon versions 8.2.2 and earlier contain a remotesupport vulnerability.
network
low complexity
dell CWE-330
7.5
2020-05-20 CVE-2020-5364 Information Exposure vulnerability in Dell EMC Isilon Onefs
Dell EMC Isilon OneFS versions 8.2.2 and earlier contain an SNMPv2 vulnerability.
network
low complexity
dell CWE-200
7.5
2020-04-04 CVE-2020-5347 Resource Exhaustion vulnerability in Dell EMC Isilon Onefs
Dell EMC Isilon OneFS versions 8.2.2 and earlier contain a denial of service vulnerability.
network
low complexity
dell CWE-400
7.5
2020-03-06 CVE-2020-5328 Missing Authentication for Critical Function vulnerability in Dell EMC Isilon Onefs
Dell EMC Isilon OneFS versions prior to 8.2.0 contain an unauthorized access vulnerability due to a lack of thorough authorization checks when SyncIQ is licensed, but encrypted syncs are not marked as required.
network
low complexity
dell CWE-306
critical
9.8