CVE-2022-43831IBM Storage Scale Container Native Storage Access vulnerability

3 documents3 sources
Severity
7.8HIGHNVD
CNA7.4
EPSS
0.0%
top 93.47%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Storage Scale Container Native Storage AccessIBM Spectrum Scale Container Native Storage Access
Timeline
PublishedJul 31

Description

IBM Storage Scale Container Native Storage Access 5.1.2.1 through 5.1.6.1 could allow a local user to obtain escalated privileges on a host without proper security context settings configured. IBM X-Force ID: 238941.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-c326-4crc-w8r2: IBM Storage Scale Container Native Storage Access 52023-07-31
CVEList
IBM Spectrum Scale privilege escalation2023-07-31
CVE-2022-43831 — IBM vulnerability | cvebase