CVE-2016-9870

medium

Published 2017-01-23 · Modified 2026-05-13

CVSS v3

6.7

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CVSS v2

7.2

VIR risk

6.7

Description

EMC Isilon OneFS 8.0.0.0, EMC Isilon OneFS 7.2.1.0 - 7.2.1.2, EMC Isilon OneFS 7.2.0.x, EMC Isilon OneFS 7.1.1.0 - 7.1.1.10, and EMC Isilon OneFS 7.1.0.x is affected by an LDAP injection vulnerability that could potentially be exploited by a malicious user to compromise the system.

Predictions

Exploit likelihood

66%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: security_alert@emc.com — http://www.securityfocus.com/archive/1/540020/30/0/threaded

References

http://www.securityfocus.com/archive/1/540020/30/0/threaded
http://www.securityfocus.com/bid/95626
http://www.securityfocus.com/archive/1/540020/30/0/threaded
http://www.securityfocus.com/bid/95626

CWEs

CWE-90

Verify integrity in audit chain (admin only). AS-IS.