Total
5 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2017-8020 | 1 Emc | 1 Scaleio | 2024-11-21 | 10.0 HIGH | 9.8 CRITICAL |
An issue was discovered in EMC ScaleIO 2.0.1.x. A buffer overflow vulnerability in the SDBG service may potentially allow a remote unauthenticated attacker to execute arbitrary commands with root privileges on an affected server. | |||||
CVE-2017-8019 | 1 Emc | 1 Scaleio | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
An issue was discovered in EMC ScaleIO 2.0.1.x. A vulnerability in message parsers (MDM, SDS, and LIA) could potentially allow an unauthenticated remote attacker to send specifically crafted packets to stop ScaleIO services and cause a denial of service situation. | |||||
CVE-2016-9869 | 1 Emc | 1 Scaleio | 2024-11-21 | 2.1 LOW | 5.5 MEDIUM |
An issue was discovered in EMC ScaleIO versions before 2.0.1.1. Incorrect permissions on the SCINI driver may allow a low-privileged local attacker to modify the configuration and render the ScaleIO Data Client (SDC) server unavailable. | |||||
CVE-2016-9868 | 1 Emc | 1 Scaleio | 2024-11-21 | 2.1 LOW | 5.5 MEDIUM |
An issue was discovered in EMC ScaleIO versions before 2.0.1.1. A low-privileged local attacker may cause a denial-of-service by generating a kernel panic in the SCINI driver using IOCTL calls which may render the ScaleIO Data Client (SDC) server unavailable until the next reboot. | |||||
CVE-2016-9867 | 1 Emc | 1 Scaleio | 2024-11-21 | 4.6 MEDIUM | 8.8 HIGH |
An issue was discovered in EMC ScaleIO versions before 2.0.1.1. A low-privileged local attacker may be able to modify the kernel memory in the SCINI driver and may achieve code execution to escalate privileges to root on ScaleIO Data Client (SDC) servers. |