CVE-2023-30434

CWE-20Improper Input Validation3 documents3 sources
Severity
5.5MEDIUM
EPSS
0.0%
top 94.48%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Elastic Storage SystemIBM Spectrum Scale
Timeline
PublishedMay 5

Description

IBM Storage Scale (IBM Spectrum Scale 5.1.0.0 through 5.1.2.9, 5.1.3.0 through 5.1.6.1 and IBM Elastic Storage Systems 6.1.0.0 through 6.1.2.5, 6.1.3.0 through 6.1.6.0) could allow a local user to cause a kernel panic. IBM X-Force ID: 252187.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.5 | Impact: 3.6

Affected Packages4 packages

NVDibm/elastic_storage_system6.1.0.06.1.2.6+1
CVEListV5ibm/spectrum_scale5.1.0.05.1.2.9+1
NVDibm/spectrum_scale5.1.0.05.1.2.9+1
CVEListV5ibm/elastic_storage_system6.1.0.06.1.2.5+1

Patches

Patch: www.ibm.comPatch: www.ibm.comPatch: www.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-5xh5-w63j-87xg: IBM Storage Scale (IBM Spectrum Scale 52023-05-05
CVEList
IBM Storage Scale denial of service2023-05-05
CVE-2023-30434 (MEDIUM CVSS 5.5) | IBM Storage Scale (IBM Spectrum Sca | cvebase.io