CVE-2017-4980
high-risk
Published 2017-03-29
EMC Isilon OneFS is affected by a path traversal vulnerability that may potentially be exploited by attackers to compromise the affected system. Affected versions are 7.1.0 - 7.1.1.10, 7.2.0 - 7.2.1.3, and 8.0.0 - 8.0.0.1.
Do I need to act?
~
2.7% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10
High
NETWORK
/ LOW complexity
Affected Products (20)
Isilon Onefs
Isilon Onefs
Isilon Onefs
Isilon Onefs
Isilon Onefs
Isilon Onefs
Isilon Onefs
Isilon Onefs
Isilon Onefs
Isilon Onefs
Isilon Onefs
Isilon Onefs
Isilon Onefs
Isilon Onefs
Isilon Onefs
Isilon Onefs
Isilon Onefs
Isilon Onefs
Isilon Onefs
Isilon Onefs
Affected Vendors
References (4)
Third Party Advisory
http://www.securityfocus.com/archive/1/540338/30/0/threaded
Third Party Advisory
http://www.securityfocus.com/bid/97222
Third Party Advisory
http://www.securityfocus.com/archive/1/540338/30/0/threaded
Third Party Advisory
http://www.securityfocus.com/bid/97222
53
/ 100
high-risk
Severity
26/34 · High
Exploitability
6/34 · Minimal
Exposure
21/34 · High