CVE-2015-6848

EMC Isilon OneFS 7.1.x before 7.1.1.5, 7.2.0.x before 7.2.0.3, and 7.2.1.x before 7.2.1.1, when the RFC 2307 feature is configured but SFU is not universally present, allows remote authenticated AD users to obtain root privileges via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.5 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:S/C:C/I:C/A:C
dellCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 57%
VendorProductVersion
emcisilon_onefs
𝑥
≤ 7.1.1.0
emcisilon_onefs
7.1.1.1
emcisilon_onefs
7.1.1.2
emcisilon_onefs
7.1.1.3
emcisilon_onefs
7.1.1.4
emcisilon_onefs
7.2.0.0
emcisilon_onefs
7.2.0.1
emcisilon_onefs
7.2.0.2
emcisilon_onefs
7.2.1.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://seclists.org/bugtraq/2015/Nov/121
http://seclists.org/bugtraq/2015/Nov/121