Vulnerability Details CVE-2010-2860
The EMC Celerra Network Attached Storage (NAS) appliance accepts external network traffic to IP addresses intended for an intranet network within the appliance, which allows remote attackers to read, create, or modify arbitrary files in the user data directory via NFS requests.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.1
EPSS Ranking 92.7%
CVSS Severity
CVSS v2 Score 9.3
References
- http://archives.neohapsis.com/archives/fulldisclosure/2010-08/0018.html
- http://securitytracker.com/id?1024271
- http://www.exploit-db.com/exploits/14536
- http://www.securityfocus.com/archive/1/512823/100/0/threaded
- http://www.securityfocus.com/archive/1/513564/100/0/threaded
- http://www.securityfocus.com/bid/42134
- http://www.vupen.com/english/advisories/2010/2337
- https://exchange.xforce.ibmcloud.com/vulnerabilities/60885
- https://www.trustwave.com/spiderlabs/advisories/TWSL2010-003.txt
- http://archives.neohapsis.com/archives/fulldisclosure/2010-08/0018.html
- http://securitytracker.com/id?1024271
- http://www.exploit-db.com/exploits/14536
- http://www.securityfocus.com/archive/1/512823/100/0/threaded
- http://www.securityfocus.com/archive/1/513564/100/0/threaded
- http://www.securityfocus.com/bid/42134
- http://www.vupen.com/english/advisories/2010/2337
- https://exchange.xforce.ibmcloud.com/vulnerabilities/60885
- https://www.trustwave.com/spiderlabs/advisories/TWSL2010-003.txt
Products affected by CVE-2010-2860
-
cpe:2.3:h:emc:celerra_network_attached_storage:-