CVE-2020-5318

Dell EMC Isilon OneFS versions 8.1.2, 8.1.0.4, 8.1.0.3, and 8.0.0.7 contain a vulnerability in some configurations. An attacker may exploit this vulnerability to gain access to restricted files. The non-RAN HTTP and WebDAV file-serving components have a vulnerability wherein when either are enabled, and Basic Authentication is enabled for either or both components, files are accessible without authentication.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:dell:emc_isilon_onefs:8.0.0.7:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_isilon_onefs:8.1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_isilon_onefs:8.1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:dell:emc_isilon_onefs:8.1.2:*:*:*:*:*:*:*

Information

Published : 2020-02-06 10:15

Updated : 2020-02-11 11:19


NVD link : CVE-2020-5318

Mitre link : CVE-2020-5318


JSON object : View

CWE
CWE-863

Incorrect Authorization

Advertisement

dedicated server usa

Products Affected

dell

  • emc_isilon_onefs