Lucene search

IbmCVE-2022-41739

HistoryApr 26, 2023 - 3:15 a.m.

CVE-2022-41739

2023-04-2603:15:08

ibm

web.nvd.nist.gov

ibm

spectrum scale

container

native storage

access

security

vulnerability

ibm x-force

nvd

cve-2022-41739

CVSS3

8.4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

AI Score

7.9

Confidence

High

EPSS

Percentile

9.0%

JSON

IBM Spectrum Scale (IBM Spectrum Scale Container Native Storage Access 5.1.2.1 through 5.1.6.0) could allow programs running inside the container to overcome isolation mechanism and gain additional capabilities or access sensitive information on the host. IBM X-Force ID: 237815.

Affected configurations

Nvd

Vulners

Node

ibmspectrum_scale_container_native_storage_accessRange5.1.2.1–5.1.6.0

VendorProductVersionCPE
ibmspectrum_scale_container_native_storage_access*cpe:2.3:a:ibm:spectrum_scale_container_native_storage_access:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	spectrum_scale_container_native_storage_access	*	cpe:2.3:a:ibm:spectrum_scale_container_native_storage_access::::::::

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Spectrum Scale Container Native Storage Access",
    "vendor": "IBM",
    "versions": [
      {
        "lessThan": "5.1.6.0",
        "status": "affected",
        "version": "5.1.2.1",
        "versionType": "semver"
      }
    ]
  }
]

References

exchange.xforce.ibmcloud.com/vulnerabilities/237815

www.ibm.com/support/pages/node/6964568

CVSS3

8.4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

AI Score

7.9

Confidence

High

EPSS

Percentile

9.0%

JSON

Related for CVE-2022-41739