What is the severity of CVE-2012-2282?

CVE-2012-2282 has a medium severity rating due to improper implementation of NFS access control.

How do I fix CVE-2012-2282?

To fix CVE-2012-2282, update your EMC Celerra Network Server or VNX and VNXe systems to the latest recommended versions.

What systems are affected by CVE-2012-2282?

CVE-2012-2282 affects EMC Celerra Network Server versions before 6.0.61.0 and VNX and VNXe versions before specified patch levels.

Can remote users exploit CVE-2012-2282?

Yes, remote authenticated users can exploit CVE-2012-2282 to read or modify files due to insufficient NFS access controls.

What is the impact of CVE-2012-2282?

The impact of CVE-2012-2282 includes potential unauthorized access and manipulation of files on affected EMC systems.

Vulnerability/
CVE-2012-2282

medium

6.5

CWE

264

16/7/2012

6/8/2024

CVE-2012-2282

First published: Mon Jul 16 2012(Updated: )

EMC Celerra Network Server 6.x before 6.0.61.0, VNX 7.x before 7.0.53.2, and VNXe 2.0 and 2.1 before 2.1.3.19077 (aka MR1 SP3.2) and 2.2 before 2.2.0.19078 (aka MR2 SP0.2) do not properly implement NFS access control, which allows remote authenticated users to read or modify files via a (1) NFSv2, (2) NFSv3, or (3) NFSv4 request.

Credit: security_alert@emc.com

Affected Software	Affected Version	How to fix
EMC Celerra Network Attached Storage	=6.0.36.4
EMC Celerra Network Attached Storage	=6.0.60.2
EMC VNX	=7.0.12.0
EMC VNX	=7.0.53.1
Dell EMC VNXe3200	=2.0
Dell EMC VNXe3200	=2.0-sp1
Dell EMC VNXe3200	=2.0-sp2
Dell EMC VNXe3200	=2.0-sp3
Dell EMC VNXe3200	=mr1-sp1
Dell EMC VNXe3200	=mr1-sp2
Dell EMC VNXe3200	=mr1-sp3
Dell EMC VNXe3200	=mr1-sp3.1
Dell EMC VNXe3200	=mr2-sp0.1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2012-2282?
CVE-2012-2282 has a medium severity rating due to improper implementation of NFS access control.
How do I fix CVE-2012-2282?
To fix CVE-2012-2282, update your EMC Celerra Network Server or VNX and VNXe systems to the latest recommended versions.
What systems are affected by CVE-2012-2282?
CVE-2012-2282 affects EMC Celerra Network Server versions before 6.0.61.0 and VNX and VNXe versions before specified patch levels.
Can remote users exploit CVE-2012-2282?
Yes, remote authenticated users can exploit CVE-2012-2282 to read or modify files due to insufficient NFS access controls.
What is the impact of CVE-2012-2282?
The impact of CVE-2012-2282 includes potential unauthorized access and manipulation of files on affected EMC systems.

agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/weakness
agent/severity
agent/author
agent/first-publish-date
agent/description
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/emc
canonical/emc celerra network attached storage
version/emc celerra network attached storage/6.0.36.4
version/emc celerra network attached storage/6.0.60.2
canonical/emc vnx
version/emc vnx/7.0.12.0
version/emc vnx/7.0.53.1
canonical/dell emc vnxe3200
version/dell emc vnxe3200/2.0
version/dell emc vnxe3200/2.0-sp1
version/dell emc vnxe3200/2.0-sp2
version/dell emc vnxe3200/2.0-sp3
version/dell emc vnxe3200/mr1-sp1
version/dell emc vnxe3200/mr1-sp2
version/dell emc vnxe3200/mr1-sp3
version/dell emc vnxe3200/mr1-sp3.1
version/dell emc vnxe3200/mr2-sp0.1

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.