CVE-2020-5347

MEDIUM

Dell EMC Isilon OneFS < 8.2.2 - Denial of Service via SmartConnect DNS Response Loop

Title source: llm

Description

Dell EMC Isilon OneFS versions 8.2.2 and earlier contain a denial of service vulnerability. SmartConnect had an error condition that may be triggered to loop, using CPU and potentially preventing other SmartConnect DNS responses.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_misc

https://www.dell.com/support/security/en-us/details/542190/DSA-2020-054-Dell-EMC-Isilon-OneFS-Security-Update-for-DNS-Protocol-Vulnerabilities

Scores

CVSS v3 5.3

EPSS 0.0054

EPSS Percentile 67.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Details

CWE

CWE-400

Status published

Products (1)

dell/emc_isilon_onefs < 8.2.2

Published Apr 04, 2020

Tracked Since Feb 18, 2026