CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
AI Score
Confidence
High
EPSS
Percentile
65.8%
EMC Isilon OneFS 7.1.x and 7.2.x before 7.2.1.3 and 8.0.x before 8.0.0.1, and IsilonSD Edge OneFS 8.0.x before 8.0.0.1, does not require SMB signing within a DCERPC session over ncacn_np, which allows man-in-the-middle attackers to spoof SMB clients by modifying the client-server data stream, a similar issue to CVE-2016-2115.
Vendor | Product | Version | CPE |
---|---|---|---|
emc | isilon_onefs | 7.1.0.0 | cpe:2.3:o:emc:isilon_onefs:7.1.0.0:*:*:*:*:*:*:* |
emc | isilon_onefs | 7.1.0.1 | cpe:2.3:o:emc:isilon_onefs:7.1.0.1:*:*:*:*:*:*:* |
emc | isilon_onefs | 7.1.0.2 | cpe:2.3:o:emc:isilon_onefs:7.1.0.2:*:*:*:*:*:*:* |
emc | isilon_onefs | 7.1.0.3 | cpe:2.3:o:emc:isilon_onefs:7.1.0.3:*:*:*:*:*:*:* |
emc | isilon_onefs | 7.1.0.4 | cpe:2.3:o:emc:isilon_onefs:7.1.0.4:*:*:*:*:*:*:* |
emc | isilon_onefs | 7.1.0.5 | cpe:2.3:o:emc:isilon_onefs:7.1.0.5:*:*:*:*:*:*:* |
emc | isilon_onefs | 7.1.0.6 | cpe:2.3:o:emc:isilon_onefs:7.1.0.6:*:*:*:*:*:*:* |
emc | isilon_onefs | 7.1.1.0 | cpe:2.3:o:emc:isilon_onefs:7.1.1.0:*:*:*:*:*:*:* |
emc | isilon_onefs | 7.1.1.1 | cpe:2.3:o:emc:isilon_onefs:7.1.1.1:*:*:*:*:*:*:* |
emc | isilon_onefs | 7.1.1.2 | cpe:2.3:o:emc:isilon_onefs:7.1.1.2:*:*:*:*:*:*:* |
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
AI Score
Confidence
High
EPSS
Percentile
65.8%