PT-2021-11223 · Dell Emc · Dell Emc Powerscale Onefs
Published
2021-02-09
·
Updated
2022-10-21
·
CVE-2020-26195
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L |
Name of the Vulnerable Software and Affected Versions:
Dell EMC PowerScale OneFS versions 8.1.2 through 9.1.0
Description:
The issue in Dell EMC PowerScale OneFS allows a remote unauthenticated attacker to potentially slow down the system by exploiting the OneFS SMB directory auto-create feature, which may erroneously create a directory for a user.
Recommendations:
For versions 8.1.2 through 9.1.0, consider disabling the OneFS SMB directory auto-create feature as a temporary workaround to minimize the risk of exploitation.
Fix
Improper Handling of Exceptional Conditions
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Dell Emc Powerscale Onefs