Ibm

Spectrum Scale

57 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2020-4349

  • EPSS 0.11%
  • Veröffentlicht 27.05.2020 14:15:11
  • Zuletzt bearbeitet 21.11.2024 05:32:37

IBM Spectrum Scale 5.0.0.0 through 5.0.4.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 178423.

6.5

CVE-2020-4348

  • EPSS 0.1%
  • Veröffentlicht 27.05.2020 14:15:11
  • Zuletzt bearbeitet 21.11.2024 05:32:37

IBM Spectrum Scale 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.4 could allow an authenticated GUI user to perform unauthorized actions due to missing function level access control. IBM X-Force ID: 178414

5.3

CVE-2020-4412

  • EPSS 0.32%
  • Veröffentlicht 19.05.2020 14:15:11
  • Zuletzt bearbeitet 21.11.2024 05:32:42

The Spectrum Scale 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.3 file system component is affected by a denial of service security vulnerability. An attacker can force the Spectrum Scale mmfsd/mmsdrserv daemons to unexpectedly exit, impacting ...

7.1

CVE-2020-4411

  • EPSS 0.04%
  • Veröffentlicht 19.05.2020 14:15:11
  • Zuletzt bearbeitet 21.11.2024 05:32:42

The Spectrum Scale 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.3 file system component is affected by a denial of service vulnerability in its kernel module that could allow an attacker to cause a denial of service condition on the affected sy...

7.8

CVE-2020-4273

  • EPSS 0.04%
  • Veröffentlicht 03.04.2020 13:15:13
  • Zuletzt bearbeitet 21.11.2024 05:32:30

IBM Spectrum Scale 4.2 and 5.0 could allow a local unprivileged attacker with intimate knowledge of the enviornment to execute commands as root using specially crafted input. IBM X-Force ID: 175977.

9

CVE-2020-4242

  • EPSS 4.08%
  • Veröffentlicht 31.03.2020 15:15:21
  • Zuletzt bearbeitet 21.11.2024 05:32:26

IBM Spectrum Scale and IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially crafted request, an attacker could exploit this vulnerability to ex...

9

CVE-2020-4241

  • EPSS 11.33%
  • Veröffentlicht 31.03.2020 15:15:21
  • Zuletzt bearbeitet 21.11.2024 05:32:26

IBM Spectrum Scale and IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially crafted request, an attacker could exploit this vulnerability to ex...

7.5

CVE-2020-4217

  • EPSS 0.47%
  • Veröffentlicht 09.03.2020 15:15:11
  • Zuletzt bearbeitet 21.11.2024 05:32:24

The IBM Spectrum Scale 4.2 and 5.0 file system component is affected by a denial of service security vulnerability. An attacker can force the Spectrum Scale mmfsd/mmsdrserv daemons to unexpectedly exit, impacting the functionality of the Spectrum Sca...

9

CVE-2019-4715

  • EPSS 5.05%
  • Veröffentlicht 11.12.2019 15:15:14
  • Zuletzt bearbeitet 21.11.2024 04:44:02

IBM Spectrum Scale 4.2 and 5.0 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system. ...

5.4

CVE-2019-4665

  • EPSS 0.19%
  • Veröffentlicht 11.12.2019 15:15:14
  • Zuletzt bearbeitet 21.11.2024 04:43:56

IBM Spectrum Scale 4.2 and 5.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a tru...