cnvd - cnvd-2018-01328

cnvd-2018-01328

Vulnerability from cnvd

Title: EMC Isilon OneFS NFS Export安全绕过漏洞

Description:

EMC Isilon OneFS是美国易安信（EMC）公司的一套支持EMC Isilon（横向扩展存储系统）的分布式文件系统。该系统将传统存储体系结构的三个层（文件系统、卷管理器和数据保护）合并为一个统一的软件层，从而创建跨群集中所有节点的文件系统。

EMC Isilon OneFS 8.1.0.0版本，8.0.1.0版本至8.0.1.1版本和8.0.0.0版本至8.0.0.4版本中的NFS服务存在安全绕过漏洞，该漏洞源于程序一直保持着默认的NFS导出设置。攻击者可借助较弱的默认安全偏好利用该漏洞访问受影响的NFS导出功能。

Severity: 中

Patch Name: EMC Isilon OneFS NFS Export安全绕过漏洞的补丁

Patch Description:

EMC Isilon OneFS 8.1.0.0版本，8.0.1.0版本至8.0.1.1版本和8.0.0.0版本至8.0.0.4版本中的NFS服务存在安全绕过漏洞，该漏洞源于程序一直保持着默认的NFS导出设置。攻击者可借助较弱的默认安全偏好利用该漏洞访问受影响的NFS导出功能。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已发布升级补丁以修复漏洞，详情请关注厂商主页： http://www.emc.com

Reference: http://seclists.org/fulldisclosure/2017/Dec/78

Impacted products

Name
['EMC Isilon OneFS 8.0.0.0', 'EMC Isilon OneFS >=8.0.1.0，<=8.0.1.1', 'EMC Isilon OneFS >=8.0.0.0，<=8.0.0.4']

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "102292"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-14387"
    }
  },
  "description": "EMC Isilon OneFS\u662f\u7f8e\u56fd\u6613\u5b89\u4fe1\uff08EMC\uff09\u516c\u53f8\u7684\u4e00\u5957\u652f\u6301EMC Isilon\uff08\u6a2a\u5411\u6269\u5c55\u5b58\u50a8\u7cfb\u7edf\uff09\u7684\u5206\u5e03\u5f0f\u6587\u4ef6\u7cfb\u7edf\u3002\u8be5\u7cfb\u7edf\u5c06\u4f20\u7edf\u5b58\u50a8\u4f53\u7cfb\u7ed3\u6784\u7684\u4e09\u4e2a\u5c42\uff08\u6587\u4ef6\u7cfb\u7edf\u3001\u5377\u7ba1\u7406\u5668\u548c\u6570\u636e\u4fdd\u62a4\uff09\u5408\u5e76\u4e3a\u4e00\u4e2a\u7edf\u4e00\u7684\u8f6f\u4ef6\u5c42\uff0c\u4ece\u800c\u521b\u5efa\u8de8\u7fa4\u96c6\u4e2d\u6240\u6709\u8282\u70b9\u7684\u6587\u4ef6\u7cfb\u7edf\u3002\r\n\r\nEMC Isilon OneFS 8.1.0.0\u7248\u672c\uff0c8.0.1.0\u7248\u672c\u81f38.0.1.1\u7248\u672c\u548c8.0.0.0\u7248\u672c\u81f38.0.0.4\u7248\u672c\u4e2d\u7684NFS\u670d\u52a1\u5b58\u5728\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u4e00\u76f4\u4fdd\u6301\u7740\u9ed8\u8ba4\u7684NFS\u5bfc\u51fa\u8bbe\u7f6e\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9\u8f83\u5f31\u7684\u9ed8\u8ba4\u5b89\u5168\u504f\u597d\u5229\u7528\u8be5\u6f0f\u6d1e\u8bbf\u95ee\u53d7\u5f71\u54cd\u7684NFS\u5bfc\u51fa\u529f\u80fd\u3002",
  "discovererName": "EMC",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8be6\u60c5\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875\uff1a\r\nhttp://www.emc.com",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-01328",
  "openTime": "2018-01-19",
  "patchDescription": "EMC Isilon OneFS\u662f\u7f8e\u56fd\u6613\u5b89\u4fe1\uff08EMC\uff09\u516c\u53f8\u7684\u4e00\u5957\u652f\u6301EMC Isilon\uff08\u6a2a\u5411\u6269\u5c55\u5b58\u50a8\u7cfb\u7edf\uff09\u7684\u5206\u5e03\u5f0f\u6587\u4ef6\u7cfb\u7edf\u3002\u8be5\u7cfb\u7edf\u5c06\u4f20\u7edf\u5b58\u50a8\u4f53\u7cfb\u7ed3\u6784\u7684\u4e09\u4e2a\u5c42\uff08\u6587\u4ef6\u7cfb\u7edf\u3001\u5377\u7ba1\u7406\u5668\u548c\u6570\u636e\u4fdd\u62a4\uff09\u5408\u5e76\u4e3a\u4e00\u4e2a\u7edf\u4e00\u7684\u8f6f\u4ef6\u5c42\uff0c\u4ece\u800c\u521b\u5efa\u8de8\u7fa4\u96c6\u4e2d\u6240\u6709\u8282\u70b9\u7684\u6587\u4ef6\u7cfb\u7edf\u3002\r\n\r\nEMC Isilon OneFS 8.1.0.0\u7248\u672c\uff0c8.0.1.0\u7248\u672c\u81f38.0.1.1\u7248\u672c\u548c8.0.0.0\u7248\u672c\u81f38.0.0.4\u7248\u672c\u4e2d\u7684NFS\u670d\u52a1\u5b58\u5728\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u4e00\u76f4\u4fdd\u6301\u7740\u9ed8\u8ba4\u7684NFS\u5bfc\u51fa\u8bbe\u7f6e\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9\u8f83\u5f31\u7684\u9ed8\u8ba4\u5b89\u5168\u504f\u597d\u5229\u7528\u8be5\u6f0f\u6d1e\u8bbf\u95ee\u53d7\u5f71\u54cd\u7684NFS\u5bfc\u51fa\u529f\u80fd\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "EMC Isilon OneFS NFS Export\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "EMC Isilon OneFS 8.0.0.0",
      "EMC Isilon OneFS \u003e=8.0.1.0\uff0c\u003c=8.0.1.1",
      "EMC Isilon OneFS \u003e=8.0.0.0\uff0c\u003c=8.0.0.4"
    ]
  },
  "referenceLink": "http://seclists.org/fulldisclosure/2017/Dec/78",
  "serverity": "\u4e2d",
  "submitTime": "2017-12-20",
  "title": "EMC Isilon OneFS NFS Export\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e"
}

CVE-2017-14387 (GCVE-0-2017-14387)

Vulnerability from cvelistv5

Published

2017-12-20 23:00

Modified

2024-08-05 19:27

Severity ?

CWE

NFS Export Security Setting Fallback Vulnerability

Summary

The NFS service in EMC Isilon OneFS 8.1.0.0, 8.0.1.0 - 8.0.1.1, and 8.0.0.0 - 8.0.0.4 maintains default NFS export settings (including the NFS export security flavor for authentication) that can be leveraged by current and future NFS exports. This NFS service contained a flaw that did not properly propagate changes made to the default security flavor to all new and existing NFS exports that are configured to use default NFS export settings and that are mounted after those changes are made. This flaw may potentially allow NFS clients to access affected NFS exports using the default and potentially weaker security flavor even if a more secure one was selected to be used by the OneFS administrator, aka an "NFS Export Security Setting Fallback Vulnerability."

References

▼	URL	Tags
	http://seclists.org/fulldisclosure/2017/Dec/78	x_refsource_CONFIRM
	http://www.securityfocus.com/bid/102292	vdb-entry, x_refsource_BID

Impacted products

	Vendor	Product	Version
	n/a	EMC Isilon OneFS EMC Isilon OneFS 8.1.0.0, EMC Isilon OneFS 8.0.1.0 -- 8.0.1.1, EMC Isilon OneFS 8.0.0.0 8.0.0.4	Version: EMC Isilon OneFS EMC Isilon OneFS 8.1.0.0, EMC Isilon OneFS 8.0.1.0 -- 8.0.1.1, EMC Isilon OneFS 8.0.0.0 8.0.0.4

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T19:27:40.832Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2017/Dec/78"
          },
          {
            "name": "102292",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/102292"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "EMC Isilon OneFS EMC Isilon OneFS 8.1.0.0, EMC Isilon OneFS 8.0.1.0 -- 8.0.1.1, EMC Isilon OneFS 8.0.0.0 8.0.0.4",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "EMC Isilon OneFS EMC Isilon OneFS 8.1.0.0, EMC Isilon OneFS 8.0.1.0 -- 8.0.1.1, EMC Isilon OneFS 8.0.0.0 8.0.0.4"
            }
          ]
        }
      ],
      "datePublic": "2017-12-20T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The NFS service in EMC Isilon OneFS 8.1.0.0, 8.0.1.0 - 8.0.1.1, and 8.0.0.0 - 8.0.0.4 maintains default NFS export settings (including the NFS export security flavor for authentication) that can be leveraged by current and future NFS exports. This NFS service contained a flaw that did not properly propagate changes made to the default security flavor to all new and existing NFS exports that are configured to use default NFS export settings and that are mounted after those changes are made. This flaw may potentially allow NFS clients to access affected NFS exports using the default and potentially weaker security flavor even if a more secure one was selected to be used by the OneFS administrator, aka an \"NFS Export Security Setting Fallback Vulnerability.\""
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "NFS Export Security Setting Fallback Vulnerability",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-12-29T10:57:01",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://seclists.org/fulldisclosure/2017/Dec/78"
        },
        {
          "name": "102292",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/102292"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security_alert@emc.com",
          "ID": "CVE-2017-14387",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "EMC Isilon OneFS EMC Isilon OneFS 8.1.0.0, EMC Isilon OneFS 8.0.1.0 -- 8.0.1.1, EMC Isilon OneFS 8.0.0.0 8.0.0.4",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "EMC Isilon OneFS EMC Isilon OneFS 8.1.0.0, EMC Isilon OneFS 8.0.1.0 -- 8.0.1.1, EMC Isilon OneFS 8.0.0.0 8.0.0.4"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The NFS service in EMC Isilon OneFS 8.1.0.0, 8.0.1.0 - 8.0.1.1, and 8.0.0.0 - 8.0.0.4 maintains default NFS export settings (including the NFS export security flavor for authentication) that can be leveraged by current and future NFS exports. This NFS service contained a flaw that did not properly propagate changes made to the default security flavor to all new and existing NFS exports that are configured to use default NFS export settings and that are mounted after those changes are made. This flaw may potentially allow NFS clients to access affected NFS exports using the default and potentially weaker security flavor even if a more secure one was selected to be used by the OneFS administrator, aka an \"NFS Export Security Setting Fallback Vulnerability.\""
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "NFS Export Security Setting Fallback Vulnerability"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://seclists.org/fulldisclosure/2017/Dec/78",
              "refsource": "CONFIRM",
              "url": "http://seclists.org/fulldisclosure/2017/Dec/78"
            },
            {
              "name": "102292",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/102292"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2017-14387",
    "datePublished": "2017-12-20T23:00:00",
    "dateReserved": "2017-09-12T00:00:00",
    "dateUpdated": "2024-08-05T19:27:40.832Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted