CVE DATABASE / CVE-2020-5365

CVE-2020-5365

CVSS 5.3 · MEDIUM

Summary

Dell EMC Isilon versions 8.2.2 and earlier contain a remotesupport vulnerability. The pre-configured support account, remotesupport, is bundled in the Dell EMC Isilon OneFS installation. This account is used for diagnostics and other support functions. Although the default password is different for every cluster, it is predictable.

CVSS 3.1 breakdown

Base score	5.3 (MEDIUM)
Vector	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Attack vector	NETWORK
Attack complexity	LOW
Privileges required	NONE
User interaction	NONE
Scope	UNCHANGED
Confidentiality	NONE
Integrity	NONE
Availability	LOW

Weakness type (CWE)

Affected products

Dell emc isilon onefs

Check this CVE live

Use our free CVE Lookup tool for the latest NVD record, or browse the full CISA KEV catalog.

References

https://www.dell.com/support/security/en-us/details/543775/DSA-2020-124-Dell-EMC-Isilon-OneFS-Security-Update-for-Multiple-Vulnerabilities

Data: NIST NVD. NVD last modified 2024-11-21. Always verify against the vendor advisory before acting.