CVE-2017-8021

CRITICAL

EMC ECS <3.1 - Privilege Escalation

Title source: llm

Description

EMC Elastic Cloud Storage (ECS) before 3.1 is affected by an undocumented account vulnerability that could potentially be leveraged by malicious users to compromise the affected system.

References (2)

[Mailing List, Third Party Advisory] http://seclists.org/fulldisclosure/2017/Sep/74

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/101018

Scores

CVSS v3 9.8

EPSS 0.0095

EPSS Percentile 76.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-1188

Status published

Products (2)

dell/elastic_cloud_storage < 3.0

n/a/EMC Elastic Cloud Storage all versions prior to 3.1 EMC Elastic Cloud Storage all versions prior to 3.1

Published Oct 03, 2017

Tracked Since Feb 18, 2026