VYPR

Vnx1 Firmware

by EMC Corporation

CVEs (4)

  • CVE-2017-4984CriJun 19, 2017
    risk 0.64cvss 9.8epss 0.07

    In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions prior to OE for File 7.1.80.8, an unauthenticated remote attacker may be able to elevate their permissions to root through a command injection. This may potentially be exploited by an attacker to run arbitrary…

  • CVE-2016-0917CriSep 21, 2016
    risk 0.64cvss 9.8epss 0.04

    The SMB service in EMC VNXe (VNXe3200 Operating Environment prior to 3.1.5.8711957 and VNXe3100/3150/3300 Operating Environment prior to 2.4.4.22638), VNX1 File OE before 7.1.80.3, VNX2 File OE before 8.1.9.155, and Celerra (all supported versions) does not prevent duplicate…

  • CVE-2017-4985HigJun 19, 2017
    risk 0.51cvss 7.8epss 0.00

    In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions prior to OE for File 7.1.80.8, a local authenticated user may potentially escalate their privileges to root due to authorization checks not being performed on certain perl scripts. This may potentially be…

  • CVE-2017-4987HigJun 19, 2017
    risk 0.47cvss 7.3epss 0.00

    In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions prior to OE for File 7.1.80.8, a local authenticated user can load a maliciously crafted file in the search path which may potentially allow the attacker to execute arbitrary code on the targeted VNX Control…