CVE-2017-8019

Name of the Vulnerable Software and Affected Versions EMC ScaleIO version 2.0.1.x

Description A vulnerability in message parsers, including MDM, SDS, and LIA, could potentially allow an unauthenticated remote attacker to send specifically crafted packets, causing a denial of service situation by stopping ScaleIO services.

Recommendations For EMC ScaleIO version 2.0.1.x, consider restricting access to the message parsers to minimize the risk of exploitation until a patch is available. As a temporary workaround, disabling the vulnerable message parsers (MDM, SDS, and LIA) may help prevent the denial of service situation. However, this may impact the functionality of ScaleIO services. At the moment, there is no information about a newer version that contains a fix for this vulnerability.