CVEブラウザに戻る

CVE-2016-9867

HIGH

8.8

CVSS Severity Score

EPSS Score0.1640%

EPSS Percentile15.57th

Published2017年1月6日

Last Modified2026年5月6日

Vulnerability Description

An issue was discovered in EMC ScaleIO versions before 2.0.1.1. A low-privileged local attacker may be able to modify the kernel memory in the SCINI driver and may achieve code execution to escalate privileges to root on ScaleIO Data Client (SDC) servers.

Affected Platforms (CPE)

📦

Emc

Scaleio

<= 2.0.1.0

References & Advisories

🔗 http://www.securityfocus.com/archive/1/539983/30/0/threaded

🔗 http://www.securityfocus.com/bid/95300

🔗 http://www.securityfocus.com/archive/1/539983/30/0/threaded

🔗 http://www.securityfocus.com/bid/95300

関連する脆弱性情報

CVE-2018-12379.8

Dell EMC ScaleIO versions prior to 2.5, contain improper restriction of excessive authentication attempts on the Light installatio...

CVE-2017-80209.8

An issue was discovered in EMC ScaleIO 2.0.1.x. A buffer overflow vulnerability in the SDBG service may potentially allow a remote...

CVE-2017-80018.4

An issue was discovered in EMC ScaleIO 2.0.1.x. In a Linux environment, one of the support scripts saves the credentials of the Sc...

CVE-2017-151397.5

A vulnerability was found in openstack-cinder releases up to and including Queens, allowing newly created volumes in certain stora...