Ibm

Spectrum Scale

57 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2022-43843

  • EPSS 0.04%
  • Veröffentlicht 14.12.2023 01:15:07
  • Zuletzt bearbeitet 21.11.2024 07:27:16

IBM Spectrum Scale 5.1.5.0 through 5.1.5.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 239080.

5.5

CVE-2023-30434

  • EPSS 0.02%
  • Veröffentlicht 05.05.2023 15:15:10
  • Zuletzt bearbeitet 21.11.2024 08:00:10

IBM Storage Scale (IBM Spectrum Scale 5.1.0.0 through 5.1.2.9, 5.1.3.0 through 5.1.6.1 and IBM Elastic Storage Systems 6.1.0.0 through 6.1.2.5, 6.1.3.0 through 6.1.6.0) could allow a local user to cause a kernel panic. IBM X-Force ID: 252187.

8.2

CVE-2020-4927

  • EPSS 0.06%
  • Veröffentlicht 15.03.2023 19:15:24
  • Zuletzt bearbeitet 21.11.2024 05:33:26

A vulnerability in the Spectrum Scale 5.0.5.0 through 5.1.6.1 core component could allow unauthorized access to user data or injection of arbitrary data in the communication protocol. IBM X-Force ID: 191695.

6.5

CVE-2022-43869

  • EPSS 0.07%
  • Veröffentlicht 12.02.2023 04:15:16
  • Zuletzt bearbeitet 21.11.2024 07:27:18

IBM Spectrum Scale (5.1.0.0 through 5.1.2.8 and 5.1.3.0 through 5.1.5.1) and IBM Elastic Storage System (6.1.0.0 through 6.1.2.4 and 6.1.3.0 through 6.1.4.1) could allow an authenticated user to cause a denial of service through the GUI using a forma...

6.8

CVE-2022-40607

  • EPSS 0.07%
  • Veröffentlicht 19.12.2022 20:15:11
  • Zuletzt bearbeitet 21.11.2024 07:21:42

IBM Spectrum Scale 5.1 could allow users with permissions to create pod, persistent volume and persistent volume claim to access files and directories outside of the volume, including on the host filesystem. IBM X-Force ID: 235740.

9.1

CVE-2020-4926

  • EPSS 0.16%
  • Veröffentlicht 24.05.2022 17:15:07
  • Zuletzt bearbeitet 21.11.2024 05:33:26

A vulnerability in the Spectrum Scale 5.1 core component and IBM Elastic Storage System 6.1 could allow unauthorized access to user data or injection of arbitrary data in the communication protocol. IBM X-Force ID: 191600.

7.5

CVE-2022-22368

  • EPSS 0.11%
  • Veröffentlicht 03.05.2022 19:15:07
  • Zuletzt bearbeitet 21.11.2024 06:46:42

IBM Spectrum Scale 5.1.0 through 5.1.3.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 221012.

5.5

CVE-2020-4925

  • EPSS 0.05%
  • Veröffentlicht 01.03.2022 17:15:07
  • Zuletzt bearbeitet 21.11.2024 05:33:26

A security vulnerability in the Spectrum Scale 5.0 and 5.1 allows a non-root user to overflow the mmfsd daemon with requests and preventing the daemon to service other requests. IBM X-Force ID: 191599.

4.4

CVE-2021-38882

  • EPSS 0.05%
  • Veröffentlicht 16.11.2021 17:15:06
  • Zuletzt bearbeitet 21.11.2024 06:18:08

IBM Spectrum Scale 5.1.0 through 5.1.1.1 could allow a privileged admin to destroy filesystem audit logging records before expiration time. IBM X-Force ID: 209164.

7.8

CVE-2021-29740

  • EPSS 0.07%
  • Veröffentlicht 01.06.2021 14:15:09
  • Zuletzt bearbeitet 21.11.2024 06:01:43

IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.3 system core component is affected by a format string security vulnerability. An attacker could execute arbitrary code in the context of process memory, potentially escalating their sy...