CyberSec.Space Logo
Back to CVE Browser

CVE-2016-9867

HIGH
8.8
CVSS Severity Score
EPSS Score0.1640%
EPSS Percentile15.57th
PublishedJan 6, 2017
Last ModifiedMay 6, 2026

Vulnerability Description

An issue was discovered in EMC ScaleIO versions before 2.0.1.1. A low-privileged local attacker may be able to modify the kernel memory in the SCINI driver and may achieve code execution to escalate privileges to root on ScaleIO Data Client (SDC) servers.

Affected Platforms (CPE)

πŸ“¦
Emc

Scaleio

<= 2.0.1.0

References & Advisories

πŸ”— http://www.securityfocus.com/archive/1/539983/30/0/threaded
πŸ”— http://www.securityfocus.com/bid/95300
πŸ”— http://www.securityfocus.com/archive/1/539983/30/0/threaded
πŸ”— http://www.securityfocus.com/bid/95300

Related Vulnerabilities

CVE-2018-12379.8

Dell EMC ScaleIO versions prior to 2.5, contain improper restriction of excessive authentication attempts on the Light installatio...

CVE-2017-80209.8

An issue was discovered in EMC ScaleIO 2.0.1.x. A buffer overflow vulnerability in the SDBG service may potentially allow a remote...

CVE-2017-80018.4

An issue was discovered in EMC ScaleIO 2.0.1.x. In a Linux environment, one of the support scripts saves the credentials of the Sc...

CVE-2017-151397.5

A vulnerability was found in openstack-cinder releases up to and including Queens, allowing newly created volumes in certain stora...