CVE-2015-0199

CWE-3994 documents4 sources

Severity

4.9MEDIUM

EPSS

0.2%

top 59.57%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM General Parallel File System

Timeline

PublishedMar 24

Latest updateMay 17

Description

The mmfslinux kernel module in IBM General Parallel File System (GPFS) 3.4 before 3.4.0.32, 3.5 before 3.5.0.24, and 4.1 before 4.1.0.7 allows local users to cause a denial of service (memory corruption) via unspecified character-device ioctl calls.

CVSS vector

AV:L/AC:L/C:N/I:N/A:CExploitability: 3.9 | Impact: 6.9

Affected Packages1 packages

▶NVDibm/general_parallel_file_system3.4, 3.5, 4.1+2

Patches

Patch: www-01.ibm.com ↗Patch: www-01.ibm.com ↗

🔴Vulnerability Details

GHSA

GHSA-mxgq-v86p-xg2p: The mmfslinux kernel module in IBM General Parallel File System (GPFS) 3↗2022-05-17

▶

CVEList

CVE-2015-0199: The mmfslinux kernel module in IBM General Parallel File System (GPFS) 3↗2015-03-24

▶