Access Issue with Dell EMC Isilon OneFS and PowerScale OneFS: Unauthorized Data Access via Remotesupport User Account

Access Issue with Dell EMC Isilon OneFS and PowerScale OneFS: Unauthorized Data Access via Remotesupport User Account

CVE-2020-26180 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Dell EMC Isilon OneFS supported versions 8.1 and later and Dell EMC PowerScale OneFS supported version 9.0.0 contain an access issue with the remotesupport user account. A remote malicious user with low privileges may gain access to data stored on the /ifs directory through most protocols.

Learn more about our User Device Pen Test.