Vulnerabilities > Dell > EMC Isilon Onefs > 8.1.0.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-21 | CVE-2020-5355 | Incorrect Default Permissions vulnerability in Dell EMC Isilon Onefs The Dell Isilon OneFS versions 8.2.2 and earlier SSHD process improperly allows Transmission Control Protocol (TCP) and stream forwarding. | 4.3 |
| 2021-07-29 | CVE-2020-5353 | Incorrect Default Permissions vulnerability in Dell EMC Isilon Onefs and EMC Powerscale Onefs The Dell Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 default configuration for Network File System (NFS) allows access to an 'admin' home directory. | 9.0 |
| 2021-07-28 | CVE-2020-26180 | Incorrect Default Permissions vulnerability in Dell EMC Isilon Onefs and EMC Powerscale Onefs Dell EMC Isilon OneFS supported versions 8.1 and later and Dell EMC PowerScale OneFS supported version 9.0.0 contain an access issue with the remotesupport user account. | 6.5 |
| 2020-07-06 | CVE-2020-5371 | Incorrect Permission Assignment for Critical Resource vulnerability in Dell EMC Isilon Onefs and EMC Powerscale Onefs Dell EMC Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale version 9.0.0 contain a file permissions vulnerability. | 6.5 |
| 2020-05-20 | CVE-2020-5365 | Use of Insufficiently Random Values vulnerability in Dell EMC Isilon Onefs Dell EMC Isilon versions 8.2.2 and earlier contain a remotesupport vulnerability. | 5.0 |
| 2020-05-20 | CVE-2020-5364 | Information Exposure vulnerability in Dell EMC Isilon Onefs Dell EMC Isilon OneFS versions 8.2.2 and earlier contain an SNMPv2 vulnerability. | 5.0 |
| 2020-04-04 | CVE-2020-5347 | Resource Exhaustion vulnerability in Dell EMC Isilon Onefs Dell EMC Isilon OneFS versions 8.2.2 and earlier contain a denial of service vulnerability. | 5.0 |
| 2020-03-06 | CVE-2020-5328 | Missing Authentication for Critical Function vulnerability in Dell EMC Isilon Onefs Dell EMC Isilon OneFS versions prior to 8.2.0 contain an unauthorized access vulnerability due to a lack of thorough authorization checks when SyncIQ is licensed, but encrypted syncs are not marked as required. | 10.0 |
| 2018-03-26 | CVE-2018-1213 | Cross-Site Request Forgery (CSRF) vulnerability in Dell EMC Isilon Onefs Dell EMC Isilon OneFS versions between 8.1.0.0 - 8.1.0.1, 8.0.1.0 - 8.0.1.2, and 8.0.0.0 - 8.0.0.6, versions 7.2.1.x, and version 7.1.1.11 and 8.1.0.2 is affected by a cross-site request forgery vulnerability. | 6.8 |