HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2020-5318

CVSS 7.5v3.1pub. 2020-02-06upd. 2024-11-21

Dell EMC Isilon OneFS versions 8.1.2, 8.1.0.4, 8.1.0.3, and 8.0.0.7 contain a vulnerability in some configurations. An attacker may exploit this vulnerability to gain access to restricted files. The non-RAN HTTP and WebDAV file-serving components have a vulnerability wherein when either are enabled, and Basic Authentication is enabled for either or both components, files are accessible without authentication.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  • Dell Emc Isilon Onefs

    APP
    Dell
    8.0.0.78.1.0.38.1.0.48.1.2
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
CWE
References

Related vulnerabilities

CVE-2020-5328CRITICAL9.8ten sam produkt

Dell EMC Isilon OneFS versions prior to 8.2.0 contain an unauthorized access vulnerability due to a lack of th...

CVE-2020-5353HIGH8.8ten sam produkt

The Dell Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 default configura...

CVE-2020-26181HIGH7.0ten sam produkt

Dell EMC Isilon OneFS versions 8.1 and later and Dell EMC PowerScale OneFS version 9.0.0 contain a privilege e...

CVE-2020-5369HIGH8.8ten sam produkt

Dell EMC Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 contain a privile...

CVE-2020-5371HIGH8.0ten sam produkt

Dell EMC Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale version 9.0.0 contain a file permissi...