CVE-2020-5364

Summary

Dell EMC Isilon OneFS versions 8.2.2 and earlier contain an SNMPv2 vulnerability. The SNMPv2 services is enabled, by default, with a pre-configured community string. This community string allows read-only access to many aspects of the Isilon cluster, some of which are considered sensitive and can foster additional access.

Affected Software

VendorProductVersion RangeStatus
DellIsilon OneFSunspecified < 8.2.2affected

Weaknesses

  • CWE-201: CWE-201: Exposure of Sensitive Information Through Sent Data

ADP Enrichment

CVE Program Container

Additional References

References