Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Emc Subscribe
Filtered by product Scaleio
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-8019 1 Emc 1 Scaleio 2017-12-15 5.0 MEDIUM 7.5 HIGH
An issue was discovered in EMC ScaleIO 2.0.1.x. A vulnerability in message parsers (MDM, SDS, and LIA) could potentially allow an unauthenticated remote attacker to send specifically crafted packets to stop ScaleIO services and cause a denial of service situation.
CVE-2017-8020 1 Emc 1 Scaleio 2017-12-15 10.0 HIGH 9.8 CRITICAL
An issue was discovered in EMC ScaleIO 2.0.1.x. A buffer overflow vulnerability in the SDBG service may potentially allow a remote unauthenticated attacker to execute arbitrary commands with root privileges on an affected server.
CVE-2016-9867 1 Emc 1 Scaleio 2017-01-10 4.6 MEDIUM 8.8 HIGH
An issue was discovered in EMC ScaleIO versions before 2.0.1.1. A low-privileged local attacker may be able to modify the kernel memory in the SCINI driver and may achieve code execution to escalate privileges to root on ScaleIO Data Client (SDC) servers.
CVE-2016-9868 1 Emc 1 Scaleio 2017-01-10 2.1 LOW 5.5 MEDIUM
An issue was discovered in EMC ScaleIO versions before 2.0.1.1. A low-privileged local attacker may cause a denial-of-service by generating a kernel panic in the SCINI driver using IOCTL calls which may render the ScaleIO Data Client (SDC) server unavailable until the next reboot.
CVE-2016-9869 1 Emc 1 Scaleio 2017-01-10 2.1 LOW 5.5 MEDIUM
An issue was discovered in EMC ScaleIO versions before 2.0.1.1. Incorrect permissions on the SCINI driver may allow a low-privileged local attacker to modify the configuration and render the ScaleIO Data Client (SDC) server unavailable.