Search Results (Refine Search)
- CPE Product Version: cpe:/o:emc:isilon_onefs:7.1.0.3
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2017-8024 |
EMC Isilon OneFS (versions prior to 8.1.0.1, versions prior to 8.0.1.2, versions prior to 8.0.0.6, version 7.2.1.x) is impacted by a reflected cross-site scripting vulnerability that may potentially be exploited by malicious users to compromise the affected system. Published: October 18, 2017; 5:29:00 AM -0400 |
V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2016-9870 |
EMC Isilon OneFS 8.0.0.0, EMC Isilon OneFS 7.2.1.0 - 7.2.1.2, EMC Isilon OneFS 7.2.0.x, EMC Isilon OneFS 7.1.1.0 - 7.1.1.10, and EMC Isilon OneFS 7.1.0.x is affected by an LDAP injection vulnerability that could potentially be exploited by a malicious user to compromise the system. Published: January 23, 2017; 2:59:00 AM -0500 |
V3.0: 6.7 MEDIUM V2.0: 7.2 HIGH |
CVE-2016-0908 |
EMC Isilon OneFS 7.1.x before 7.1.1.9 and 7.2.x before 7.2.1.2 allows local users to obtain root shell access by leveraging administrative privileges. Published: June 03, 2016; 9:59:01 PM -0400 |
V3.0: 6.7 MEDIUM V2.0: 6.8 MEDIUM |
CVE-2016-0907 |
EMC Isilon OneFS 7.1.x and 7.2.x before 7.2.1.3 and 8.0.x before 8.0.0.1, and IsilonSD Edge OneFS 8.0.x before 8.0.0.1, does not require SMB signing within a DCERPC session over ncacn_np, which allows man-in-the-middle attackers to spoof SMB clients by modifying the client-server data stream, a similar issue to CVE-2016-2115. Published: May 29, 2016; 9:59:00 PM -0400 |
V3.0: 5.9 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2015-4545 |
EMC Isilon OneFS 7.1 before 7.1.1.8, 7.2.0 before 7.2.0.4, and 7.2.1 before 7.2.1.1 allows remote authenticated administrators to bypass a SmartLock root-login restriction by creating a root account and establishing a login session. Published: December 21, 2015; 12:13:00 PM -0500 |
V3.0: 8.0 HIGH V2.0: 9.0 HIGH |
CVE-2015-6848 |
EMC Isilon OneFS 7.1.x before 7.1.1.5, 7.2.0.x before 7.2.0.3, and 7.2.1.x before 7.2.1.1, when the RFC 2307 feature is configured but SFU is not universally present, allows remote authenticated AD users to obtain root privileges via unspecified vectors. Published: November 26, 2015; 9:59:00 PM -0500 |
V3.x:(not available) V2.0: 8.5 HIGH |
CVE-2015-4525 |
The log-gather implementation in the web administration interface in EMC Isilon OneFS 6.5.x.x through 7.1.1.x before 7.1.1.5 and 7.2.0.x before 7.2.0.2 allows remote authenticated users to execute arbitrary commands with root privileges via unspecified vectors. Published: July 04, 2015; 6:59:03 AM -0400 |
V3.x:(not available) V2.0: 9.0 HIGH |
CVE-2015-0528 |
The RPC daemon in EMC Isilon OneFS 6.5.x and 7.0.x before 7.0.2.13, 7.1.0 before 7.1.0.6, 7.1.1 before 7.1.1.2, and 7.2.0 before 7.2.0.1 allows local users to gain privileges by leveraging an ability to modify system files. Published: March 29, 2015; 6:59:04 AM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |