Description
EMC Celerra Network Server 6.x before 6.0.61.0, VNX 7.x before 7.0.53.2, and VNXe 2.0 and 2.1 before 2.1.3.19077 (aka MR1 SP3.2) and 2.2 before 2.2.0.19078 (aka MR2 SP0.2) do not properly implement NFS access control, which allows remote authenticated users to read or modify files via a (1) NFSv2, (2) NFSv3, or (3) NFSv4 request.
References (2)
Core 2
Core References
Third Party Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2012-07/0063.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1027242
Scores
EPSS
0.0039
EPSS Percentile
60.3%
Details
CWE
CWE-264
Status
published
Products (7)
emc/celerra_network_server
6.0.36.4
emc/celerra_network_server
6.0.60.2
emc/vnx
7.0.12.0
emc/vnx
7.0.53.1
emc/vnxe
2.0 (4 CPE variants)
emc/vnxe
mr1 sp1 (4 CPE variants)
emc/vnxe
mr2 sp0.1
Published
Jul 16, 2012
Tracked Since
Feb 18, 2026