Article Number: 000153855
High
CVE-2020-5371
Dell EMC Isilon OneFS contains a file permissions vulnerability. An attacker, with network or local file access, could take advantage of insufficiently applied file permissions or gain unauthorized access to files.
CVSS v3.1 Base Score:8.0 (CVSS 3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H)
CVE-2020-5371
Dell EMC Isilon OneFS contains a file permissions vulnerability. An attacker, with network or local file access, could take advantage of insufficiently applied file permissions or gain unauthorized access to files.
CVSS v3.1 Base Score:8.0 (CVSS 3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H)
Affected products:
Dell EMC Isilon OneFS versions 8.2.2 and earlier.
Dell EMC PowerScale OneFS versions 9.2.0 and earlier.
Remediation:
See Workarounds and Mitigations section.
Affected products:
Dell EMC Isilon OneFS versions 8.2.2 and earlier.
Dell EMC PowerScale OneFS versions 9.2.0 and earlier.
Remediation:
See Workarounds and Mitigations section.
To preserve administrative write permissions, change the permissions on /ifs as follows:
chmod 755 /ifs /ifs/data
chmod +a# 1 group admin allow generic_write,delete_child,std_write_dac /ifs /ifs/data
chmod +a# 1 user compadmin allow generic_write,delete_child,std_write_dac /ifs /ifs/data
NOTE: The additional path /ifs/data on each `chmod` line.
Revision | Date | Description |
2.0 | 2021-02-15 | Workaround Updated |
1.0 | 2020-06-18 | Initial Publication |
PowerScale OneFS
Product Security Information
15 Feb 2021
Dell Security Advisory