CVE-2020-5318 : Security Advisory and Response

Dell EMC Isilon OneFS versions 8.1.2, 8.1.0.4, 8.1.0.3, and 8.0.0.7 contain a vulnerability that could allow attackers to access restricted files without authentication.

Understanding CVE-2020-5318

This CVE involves an improper authorization vulnerability in Dell EMC Isilon OneFS versions 8.1.2, 8.1.0.4, 8.1.0.3, and 8.0.0.7.

What is CVE-2020-5318?

The vulnerability in some configurations of Isilon OneFS allows attackers to gain access to restricted files without proper authentication.

The Impact of CVE-2020-5318

CVSS Base Score: 7.5 (High)
Attack Vector: Network
Confidentiality Impact: High
Attack Complexity: Low
Privileges Required: None
User Interaction: None
Scope: Unchanged
Vector String: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Technical Details of CVE-2020-5318

Vulnerability Description

The non-RAN HTTP and WebDAV file-serving components in the affected Isilon OneFS versions have a vulnerability that allows unauthorized access to files when Basic Authentication is enabled.

Affected Systems and Versions

Product: Isilon OneFS
Vendor: Dell
Affected Versions: 8.1.2, 8.1.0.4, 8.1.0.3, 8.0.0.7

Exploitation Mechanism

Attackers can exploit this vulnerability by enabling Basic Authentication for the non-RAN HTTP and WebDAV file-serving components, allowing access to files without authentication.

Mitigation and Prevention

Immediate Steps to Take

Disable Basic Authentication for the non-RAN HTTP and WebDAV file-serving components.
Apply the security update provided by Dell to address the vulnerability.

Long-Term Security Practices

Regularly monitor and update security configurations.
Implement strong authentication mechanisms to prevent unauthorized access.

Patching and Updates

Install the security update released by Dell to patch the vulnerability.