PT-2017-10369 · Emc · Scini Driver+2
Published
2017-01-06
·
Updated
2017-01-11
·
CVE-2016-9869
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
EMC ScaleIO versions prior to 2.0.1.1
Description
An issue was discovered that allows a low-privileged local attacker to modify the configuration due to incorrect permissions on the SCINI driver, potentially rendering the ScaleIO Data Client (SDC) server unavailable.
Recommendations
For versions prior to 2.0.1.1, update to version 2.0.1.1 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Scini Driver
Scaleio
Scaleio Data Client (Sdc) Server