CVE-2020-5353

The Dell Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 default configuration for Network File System (NFS) allows access to an 'admin' home directory. An attacker may leverage a spoofed Unique Identifier (UID) over NFS to rewrite sensitive files to gain administrative access to the system.
References
Link Resource
https://support.emc.com/kb/542721 Patch Vendor Advisory
Configurations

Configuration 1

cpe:2.3:a:dell:emc_isilon_onefs:*:*:*:*:*:*:*:*
cpe:2.3:o:dell:emc_powerscale_onefs:9.0.0:*:*:*:*:*:*:*

Information

Published : 2021-07-29 04:15

Updated : 2021-08-06 05:09


NVD link : CVE-2020-5353

Mitre link : CVE-2020-5353

Products Affected
No products.
CWE
CWE-276

Incorrect Default Permissions