EMC Celerra/VNX/VNXe Access Control Bug Lets Remote Authenticated Users Access Files/Directories
EMC Celerra Network Server versions 18.104.22.168 through 22.214.171.124
EMC VNX versions 126.96.36.199 through 188.8.131.52
EMC VNXe 2.0 (including SP1, SP2, and SP3)
EMC VNXe MR1 (including SP1, SP2, SP3, and SP3.1)
EMC VNXe MR2 (including SP0.1)
A vulnerability was reported in EMC Celerra/VNX/VNXe. A remote authenticated user can access files and directories on the target file system.
In certain circumstances, NFS v2/3/4 clients with network access to exported file systems may be able to gain unauthorized access to files or directories in that file system due to access control issues.
A remote authenticated user can access files and directories on the target system.
The vendor has issued a fix.
EMC Celerra Network Server Version 184.108.40.206
EMC VNX Operating Environment for File Version 220.127.116.11
EMC VNXe MR1 SP3.2 (18.104.22.16877)
EMC VNXe MR2 SP0.2 (22.214.171.12478)