CVE-2020-5365
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2020-5365
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Dell EMC Isilon versions 8.2.2 and earlier contain a remotesupport vulnerability. The pre-configured support account, remotesupport, is bundled in the Dell EMC Isilon OneFS installation. This account is used for diagnostics and other support functions. Although the default password is different for every cluster, it is predictable.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Source: NVD (National Vulnerability Database)
Vulnerability Type
从可观察状态的可预测
Source: NVD (National Vulnerability Database)
Vulnerability Title
Dell EMC Isilon OneFS 安全特征问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Dell EMC Isilon OneFS是美国戴尔(Dell)公司的一套适用于非结构化数据的横向扩展存储系统。 Dell EMC Isilon OneFS 8.2.2及之前版本中存在安全漏洞。攻击者可借助‘remotesupport’账户利用该漏洞入侵受影响的系统。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Dell | Isilon OneFS | unspecified ~ 8.2.2 | - |
II. Public POCs for CVE-2020-5365
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2020-5365
请登录查看更多情报信息。
Other References for CVE-2020-5365 (1)
IV. Related Vulnerabilities
Same weakness: CWE-341
- CVE-2026-42365
GeoVision LPC2011/LPC2211 Web Interface guessable session co - CVE-2025-40780
Cache poisoning due to weak PRNG - CVE-2025-42925
Predictable Object Identifier vulnerability in SAP NetWeaver - CVE-2024-10141
jsbroks COCO Annotator Session predictable state - CVE-2023-49259
Bruteforcing authentication cookie for a given user
V. Comments for CVE-2020-5365
No comments yet