CVE-2020-5371Incorrect Permission Assignment in Dell EMC Isilon Onefs

CWE-732Incorrect Permission Assignment5 documents4 sources
Severity
8.8HIGHNVD
CNA8.0
EPSS
0.3%
top 48.80%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Dell EMC Isilon OnefsDell Isilon OnefsDell EMC Powerscale Onefs
Timeline
PublishedJul 6
Latest updateOct 7

Description

Dell EMC Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale version 9.0.0 contain a file permissions vulnerability. An attacker, with network or local file access, could take advantage of insufficiently applied file permissions or gain unauthorized access to files.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages3 packages

CVEListV5dell/isilon_onefs8.1.2, 8.2.1, 8.2.2

🔴Vulnerability Details

4
OSV
nginx vulnerability2022-10-07
GHSA
GHSA-6r2w-q2xm-x34q: Dell EMC Isilon OneFS versions 82022-05-24
OSV
nginx vulnerability2022-04-28
CVEList
CVE-2020-5371: Dell EMC Isilon OneFS versions 82020-07-06
CVE-2020-5371 — Incorrect Permission Assignment in Dell | cvebase