-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
ESA-2017-053: EMC Isilon OneFS Privilege Escalation Vulnerability
EMC Identifier: ESA-2017-053
CVE Identifier: CVE-2017-4988
Severity Rating: CVSS v3 Base Score:
Base Score=> 7.2(AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)
Affected products:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
ESA-2017-054: EMC Avamar Multiple Vulnerabilities
EMC Identifier: ESA-2017-054
CVE Identifiers:
CVE-2017-4989, CVE-2017-4990
Affected products:
EMC Avamar Server Software 7.4.1-58, 7.4.0-242 (CVE-2017-4990)
EMC Avamar Server Softw
CVE-2017-3167: ap_get_basic_auth_pw authentication bypass
Severity: Important
Vendor: The Apache Software Foundation
Versions Affected:
httpd 2.2.0 to 2.2.32
httpd 2.4.0 to 2.4.25
Description:
Use of the ap_get_basic_auth_pw() by third-party modules outside of the
authentication phase may lead