Vulnerabilities > Dell > EMC Scaleio

DATE CVE VULNERABILITY TITLE RISK
2018-03-27 CVE-2018-1238 OS Command Injection vulnerability in Dell EMC Scaleio
Dell EMC ScaleIO versions prior to 2.5, contain a command injection vulnerability in the Light Installation Agent (LIA).
network
high complexity
dell CWE-78
7.5
7.5
2018-03-27 CVE-2018-1237 Improper Authentication vulnerability in Dell EMC Scaleio
Dell EMC ScaleIO versions prior to 2.5, contain improper restriction of excessive authentication attempts on the Light installation Agent (LIA).
network
low complexity
dell CWE-287
critical
 9.8
9.8
2018-03-27 CVE-2018-1205 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Dell EMC Scaleio
Dell EMC ScaleIO, versions prior to 2.5, do not properly handle some packet data in the MDM service.
network
low complexity
dell CWE-119
7.5
7.5
2017-11-28 CVE-2017-8001 Information Exposure Through Log Files vulnerability in Dell EMC Scaleio
An issue was discovered in EMC ScaleIO 2.0.1.x.
local
low complexity
dell CWE-532
8.4
8.4