CVE-2020-4889 — IBM Spectrum Scale vulnerability

3 documents3 sources

Severity

3.3LOWNVD

EPSS

0.0%

top 88.57%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Spectrum Scale

Timeline

PublishedJan 26

Latest updateMay 24

Description

IBM Spectrum Scale 5.0.0 through 5.0.5.4 and 5.1.0 could allow a local user to poison log files which could impact support and development efforts. IBM X-Force ID: 190971.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:NExploitability: 1.8 | Impact: 1.4

Affected Packages2 packages

▶NVDibm/spectrum_scale5.0.0 — 5.0.5.4+1

▶CVEListV5ibm/spectrum_scale5.0.0, 5.0.5.4, 5.1+2

Patches

Patch: www.ibm.com ↗Patch: www.ibm.com ↗

🔴Vulnerability Details

GHSA

GHSA-pfhc-q2fx-w3r6: IBM Spectrum Scale 5↗2022-05-24

▶

CVEList

CVE-2020-4889: IBM Spectrum Scale 5↗2021-01-26

▶