EMC Celerra/VNX/VNXe Access Control Bug Lets Remote Authenticated Users Access Files/Directories
EMC Celerra Network Server versions 22.214.171.124 through 126.96.36.199
EMC VNX versions 188.8.131.52 through 184.108.40.206
EMC VNXe 2.0 (including SP1, SP2, and SP3)
EMC VNXe MR1 (including SP1, SP2, SP3, and SP3.1)
EMC VNXe MR2 (including SP0.1)
A vulnerability was reported in EMC Celerra/VNX/VNXe. A remote authenticated user can access files and directories on the target file system.
In certain circumstances, NFS v2/3/4 clients with network access to exported file systems may be able to gain unauthorized access to files or directories in that file system due to access control issues.
A remote authenticated user can access files and directories on the target system.
The vendor has issued a fix.
EMC Celerra Network Server Version 220.127.116.11
EMC VNX Operating Environment for File Version 18.104.22.168
EMC VNXe MR1 SP3.2 (22.214.171.12477)
EMC VNXe MR2 SP0.2 (126.96.36.19978)