Arbitrary Command Execution Vulnerability in EMC Isilon OneFS Web Administration Interface

Arbitrary Command Execution Vulnerability in EMC Isilon OneFS Web Administration Interface

CVE-2015-4525 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

The log-gather implementation in the web administration interface in EMC Isilon OneFS 6.5.x.x through 7.1.1.x before 7.1.1.5 and 7.2.0.x before 7.2.0.2 allows remote authenticated users to execute arbitrary commands with root privileges via unspecified vectors.

Learn more about our Web App Pen Testing.