Vulnerability Description
The RPC daemon in EMC Isilon OneFS 6.5.x and 7.0.x before 7.0.2.13, 7.1.0 before 7.1.0.6, 7.1.1 before 7.1.1.2, and 7.2.0 before 7.2.0.1 allows local users to gain privileges by leveraging an ability to modify system files.
CVSS Score
7.2
HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Emc | Isilon Onefs | <= 7.0.2.12 |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/131035/EMC-Isilon-OneFS-Privilege-EscalatioThird Party AdvisoryVDB Entry
- http://seclists.org/bugtraq/2015/Mar/162Third Party AdvisoryVDB Entry
- http://packetstormsecurity.com/files/131035/EMC-Isilon-OneFS-Privilege-EscalatioThird Party AdvisoryVDB Entry
- http://seclists.org/bugtraq/2015/Mar/162Third Party AdvisoryVDB Entry
FAQ
What is CVE-2015-0528?
CVE-2015-0528 is a vulnerability with a CVSS score of 7.2 (HIGH). The RPC daemon in EMC Isilon OneFS 6.5.x and 7.0.x before 7.0.2.13, 7.1.0 before 7.1.0.6, 7.1.1 before 7.1.1.2, and 7.2.0 before 7.2.0.1 allows local users to gain privileges by leveraging an ability ...
How severe is CVE-2015-0528?
CVE-2015-0528 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-0528?
Check the references section above for vendor advisories and patch information. Affected products include: Emc Isilon Onefs.