GCVE - cpe:2.3:o:emc:isilon_onefs:7.2.0.2:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:emc:isilon_onefs:7.2.0.2:*:*:*:*:*:*:*

part: o version: 7.2.0.2 update: *

Vendor	Emc (`f882007a-26e9-5b42-9f2e-94a4747c4377`)
Product	Isilon Onefs (`f761dff8-a535-5716-a503-59e4a4fe4eb7`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2017-4988`	vulnerable	2026-06-03 14:37:18.260066	Details available EMC Isilon OneFS 8.0.1.0, 8.0.0 - 8.0.0.3, 7.2.0 - 7.2.1.4, 7.1.x is affected by a privilege escalation vulnerability that could potentially be exploited by attackers to compromise the affected system. Published: 2017-06-21T20:00:00.000Z Updated: 2024-08-05T14:47:44.082Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/99165 http://www.securityfocus.com/archive/1/540755/30/0/threaded	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-4980`	vulnerable	2026-06-03 14:37:18.234140	Details available EMC Isilon OneFS is affected by a path traversal vulnerability that may potentially be exploited by attackers to compromise the affected system. Affected versions are 7.1.0 - 7.1.1.10, 7.2.0 - 7.2.1.3, and 8.0.0 - 8.0.0.1. Published: 2017-03-29T21:00:00.000Z Updated: 2024-08-05T14:47:43.817Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/97222 http://www.securityfocus.com/archive/1/540338/30/0/threaded	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-4979`	vulnerable	2026-06-03 14:37:18.221753	Details available EMC Isilon OneFS 8.0.1.0, OneFS 8.0.0.0 - 8.0.0.2, OneFS 7.2.1.0 - 7.2.1.3, and OneFS 7.2.0.x is affected by an NFS export vulnerability. Under certain conditions, after upgrading a cluster from OneFS 7.1.1.x or earlier, users may have unexpected levels of access to some NFS exports. Published: 2017-05-19T15:00:00.000Z Updated: 2024-08-05T14:47:44.041Z Open on db.gcve.eu Reference links http://www.securityfocus.com/archive/1/540551/30/0/threaded	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-14380`	vulnerable	2026-06-03 14:36:39.089897	Details available In EMC Isilon OneFS 8.1.0.0, 8.0.1.0 - 8.0.1.1, 8.0.0.0 - 8.0.0.4, 7.2.1.0 - 7.2.1.5, 7.2.0.x, and 7.1.1.x, a malicious compliance admin (compadmin) account user could exploit a vulnerability in isi_get_itrace or isi_get_profile maintenance scripts to run any shell script as system root on a cluster in compliance mode. This could potentially lead to an elevation of privilege for the compadmin user and violate compliance mode. Published: 2017-12-13T20:00:00.000Z Updated: 2024-08-05T19:27:40.598Z Open on db.gcve.eu Reference links http://seclists.org/fulldisclosure/2017/Dec/41 http://www.securityfocus.com/bid/102210	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-9871`	vulnerable	2026-06-03 14:36:17.701160	Details available EMC Isilon OneFS 7.2.1.0 - 7.2.1.3, EMC Isilon OneFS 7.2.0.x, EMC Isilon OneFS 7.1.1.0 - 7.1.1.10, EMC Isilon OneFS 7.1.0.x is affected by a privilege escalation vulnerability that could potentially be exploited by attackers to compromise the affected system. Published: 2017-02-03T07:24:00.000Z Updated: 2024-08-06T03:07:30.796Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/95800 http://www.securityfocus.com/archive/1/540050/30/0/threaded	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-9870`	vulnerable	2026-06-03 14:36:17.693146	Details available EMC Isilon OneFS 8.0.0.0, EMC Isilon OneFS 7.2.1.0 - 7.2.1.2, EMC Isilon OneFS 7.2.0.x, EMC Isilon OneFS 7.1.1.0 - 7.1.1.10, and EMC Isilon OneFS 7.1.0.x is affected by an LDAP injection vulnerability that could potentially be exploited by a malicious user to compromise the system. Published: 2017-01-23T06:49:00.000Z Updated: 2024-08-06T03:07:30.140Z Open on db.gcve.eu Reference links http://www.securityfocus.com/archive/1/540020/30/0/threaded http://www.securityfocus.com/bid/95626	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-0908`	vulnerable	2026-06-03 14:35:22.578160	Details available EMC Isilon OneFS 7.1.x before 7.1.1.9 and 7.2.x before 7.2.1.2 allows local users to obtain root shell access by leveraging administrative privileges. Published: 2016-06-04T01:00:00.000Z Updated: 2024-08-05T22:38:41.122Z Open on db.gcve.eu Reference links http://seclists.org/bugtraq/2016/Jun/13	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2015-6848`	vulnerable	2026-06-03 14:35:02.968529	Details available EMC Isilon OneFS 7.1.x before 7.1.1.5, 7.2.0.x before 7.2.0.3, and 7.2.1.x before 7.2.1.1, when the RFC 2307 feature is configured but SFU is not universally present, allows remote authenticated AD users to obtain root privileges via unspecified vectors. Published: 2015-11-27T02:00:00.000Z Updated: 2024-08-06T07:36:34.178Z Open on db.gcve.eu Reference links http://seclists.org/bugtraq/2015/Nov/121	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2015-4545`	vulnerable	2026-06-03 14:34:52.171101	Details available EMC Isilon OneFS 7.1 before 7.1.1.8, 7.2.0 before 7.2.0.4, and 7.2.1 before 7.2.1.1 allows remote authenticated administrators to bypass a SmartLock root-login restriction by creating a root account and establishing a login session. Published: 2015-12-21T17:00:00.000Z Updated: 2024-08-06T06:18:11.904Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/79674 http://seclists.org/bugtraq/2015/Dec/103	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.