Arbitrary OS Command Execution Vulnerability in Dell EMC PowerScale OneFS Versions 8.1.0 - 9.1.0

Arbitrary OS Command Execution Vulnerability in Dell EMC PowerScale OneFS Versions 8.1.0 - 9.1.0

CVE-2020-26193 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain an improper input validation vulnerability. A user with the ISI_PRIV_CLUSTER privilege may exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privileges of the vulnerable application.

Learn more about our User Device Pen Test.