Lucene search

IbmCVELIST:CVE-2020-5015

HistoryMar 24, 2021 - 2:20 p.m.

CVE-2020-5015

2021-03-2414:20:14

ibm

www.cve.org

ibm elastic storage system

server

denial of service

remote attacker

malformed udp requests

ibm x-force id

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

AI Score

7.2

Confidence

High

EPSS

0.003

Percentile

70.4%

JSON

IBM Elastic Storage System 6.0.0 through 6.0.1.2 and IBM Elastic Storage Server 5.3.0 through 5.3.6.2 could allow a remote attacker to cause a denial of service by sending malformed UDP requests. IBM X-Force ID: 193486.

CNA Affected

[
  {
    "product": "Elastic Storage Server",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "5.3.0"
      },
      {
        "status": "affected",
        "version": "6.0.0"
      },
      {
        "status": "affected",
        "version": "6.0.1.2"
      },
      {
        "status": "affected",
        "version": "5.3.6.2"
      }
    ]
  }
]

References

exchange.xforce.ibmcloud.com/vulnerabilities/193486

www.ibm.com/support/pages/node/6434155

www.ibm.com/support/pages/node/6434737

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

AI Score

7.2

Confidence

High

EPSS

0.003

Percentile

70.4%

JSON

Related for CVELIST:CVE-2020-5015