CVE-2020-26180

Summary

Dell EMC Isilon OneFS supported versions 8.1 and later and Dell EMC PowerScale OneFS supported version 9.0.0 contain an access issue with the remotesupport user account. A remote malicious user with low privileges may gain access to data stored on the /ifs directory through most protocols.

Affected Software

VendorProductVersion RangeStatus
DellPowerScale OneFSunspecified < OneFS 8.1.2, 8.2.2, 9.0+affected

Weaknesses

  • CWE-276: CWE-276: Incorrect Default Permissions

ADP Enrichment

CVE Program Container

Additional References

References