Ibm

Spectrum Scale

57 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2022-43843

  • EPSS 0.04%
  • Published 14.12.2023 01:15:07
  • Last modified 21.11.2024 07:27:16

IBM Spectrum Scale 5.1.5.0 through 5.1.5.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 239080.

5.5

CVE-2023-30434

  • EPSS 0.02%
  • Published 05.05.2023 15:15:10
  • Last modified 21.11.2024 08:00:10

IBM Storage Scale (IBM Spectrum Scale 5.1.0.0 through 5.1.2.9, 5.1.3.0 through 5.1.6.1 and IBM Elastic Storage Systems 6.1.0.0 through 6.1.2.5, 6.1.3.0 through 6.1.6.0) could allow a local user to cause a kernel panic. IBM X-Force ID: 252187.

8.2

CVE-2020-4927

  • EPSS 0.06%
  • Published 15.03.2023 19:15:24
  • Last modified 21.11.2024 05:33:26

A vulnerability in the Spectrum Scale 5.0.5.0 through 5.1.6.1 core component could allow unauthorized access to user data or injection of arbitrary data in the communication protocol. IBM X-Force ID: 191695.

6.5

CVE-2022-43869

  • EPSS 0.07%
  • Published 12.02.2023 04:15:16
  • Last modified 21.11.2024 07:27:18

IBM Spectrum Scale (5.1.0.0 through 5.1.2.8 and 5.1.3.0 through 5.1.5.1) and IBM Elastic Storage System (6.1.0.0 through 6.1.2.4 and 6.1.3.0 through 6.1.4.1) could allow an authenticated user to cause a denial of service through the GUI using a forma...

6.8

CVE-2022-40607

  • EPSS 0.07%
  • Published 19.12.2022 20:15:11
  • Last modified 21.11.2024 07:21:42

IBM Spectrum Scale 5.1 could allow users with permissions to create pod, persistent volume and persistent volume claim to access files and directories outside of the volume, including on the host filesystem. IBM X-Force ID: 235740.

9.1

CVE-2020-4926

  • EPSS 0.16%
  • Published 24.05.2022 17:15:07
  • Last modified 21.11.2024 05:33:26

A vulnerability in the Spectrum Scale 5.1 core component and IBM Elastic Storage System 6.1 could allow unauthorized access to user data or injection of arbitrary data in the communication protocol. IBM X-Force ID: 191600.

7.5

CVE-2022-22368

  • EPSS 0.11%
  • Published 03.05.2022 19:15:07
  • Last modified 21.11.2024 06:46:42

IBM Spectrum Scale 5.1.0 through 5.1.3.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 221012.

5.5

CVE-2020-4925

  • EPSS 0.05%
  • Published 01.03.2022 17:15:07
  • Last modified 21.11.2024 05:33:26

A security vulnerability in the Spectrum Scale 5.0 and 5.1 allows a non-root user to overflow the mmfsd daemon with requests and preventing the daemon to service other requests. IBM X-Force ID: 191599.

4.4

CVE-2021-38882

  • EPSS 0.05%
  • Published 16.11.2021 17:15:06
  • Last modified 21.11.2024 06:18:08

IBM Spectrum Scale 5.1.0 through 5.1.1.1 could allow a privileged admin to destroy filesystem audit logging records before expiration time. IBM X-Force ID: 209164.

7.8

CVE-2021-29740

  • EPSS 0.07%
  • Published 01.06.2021 14:15:09
  • Last modified 21.11.2024 06:01:43

IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.3 system core component is affected by a format string security vulnerability. An attacker could execute arbitrary code in the context of process memory, potentially escalating their sy...