CVE-2018-1783IBM Spectrum Scale vulnerability

3 documents3 sources
Severity
5.5MEDIUMNVD
EPSS
0.1%
top 84.55%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Spectrum Scale
Timeline
PublishedOct 5
Latest updateMay 13

Description

IBM GPFS (IBM Spectrum Scale 4.1.1.0, 4.1.1.20, 4.2.0.0, 4.2.3.10, 5.0.0 and 5.0.1.2) command line utility allows an unprivileged, authenticated user with access to a GPFS node to forcefully terminate GPFS and deny access to data available through GPFS. IBM X-Force ID: 148806.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages1 packages

NVDibm/spectrum_scale4.1.0.04.1.1.20+2

Patches

Patch: www.ibm.comPatch: www.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-fp22-w9p6-q7h4: IBM GPFS (IBM Spectrum Scale 42022-05-13
CVEList
CVE-2018-1783: IBM GPFS (IBM Spectrum Scale 42018-10-05
CVE-2018-1783 — IBM Spectrum Scale vulnerability | cvebase