CVE-2017-8024Cross-site Scripting in Isilon Onefs

CWE-79Cross-site Scripting3 documents3 sources
Severity
6.1MEDIUMNVD
EPSS
0.2%
top 52.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
EMC Isilon Onefs
Timeline
PublishedOct 18
Latest updateMay 17

Description

EMC Isilon OneFS (versions prior to 8.1.0.1, versions prior to 8.0.1.2, versions prior to 8.0.0.6, version 7.2.1.x) is impacted by a reflected cross-site scripting vulnerability that may potentially be exploited by malicious users to compromise the affected system.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages1 packages

NVDemc/isilon_onefs8.1.0.0+9

Patches

Patch: seclists.orgPatch: seclists.org

🔴Vulnerability Details

2
GHSA
GHSA-78v2-mphx-mx46: EMC Isilon OneFS (versions prior to 82022-05-17
CVEList
CVE-2017-8024: EMC Isilon OneFS (versions prior to 82017-10-18
CVE-2017-8024 — Cross-site Scripting in Isilon Onefs | cvebase