N/A

An issue was discovered in EMC ScaleIO versions before 2.0.1.1. A low-privileged local attacker may be able to modify the kernel memory in the SCINI driver and may achieve code execution to escalate privileges to root on ScaleIO Data Client (SDC) servers.

N/A

N/A

EMC ScaleIO 安全漏洞

EMC ScaleIO是美国易安信（EMC）公司的一套将DAS存储转换为共享数据块存储的软件定义的解决方案。 EMC ScaleIO 2.0.1.1之前的版本中存在安全漏洞。本地攻击者可利用该漏洞更改SCINI驱动程序的内核内存，并执行代码，获取服务器的root权限。

N/A

N/A