First published: Thu Oct 01 2020(Updated: )
Dell EMC Isilon OneFS supported versions 8.1 and later and Dell EMC PowerScale OneFS supported version 9.0.0 contain an access issue with the remotesupport user account. A remote malicious user with low privileges may gain access to data stored on the /ifs directory through most protocols.
Credit: security_alert@emc.com
Affected Software | Affected Version | How to fix |
---|---|---|
Dell EMC Isilon OneFS | >=8.1.0 | |
Dell EMC PowerScale OneFS | =9.0.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2020-26180 is high.
Dell EMC Isilon OneFS supported versions 8.1 and later are affected by CVE-2020-26180.
Dell EMC PowerScale OneFS supported version 9.0.0 is affected by CVE-2020-26180.
CVE-2020-26180 has an access issue with the remotesupport user account.
A remote malicious user with low privileges may gain access to data stored on the /ifs directory through most protocols in CVE-2020-26180.