CVE-2021-29873

🗓️ 21 Oct 2021 16:40:13Reported by ibmType

IBM Flash System 900 restricted shell escape vulnerabilit

Reporter	Title	Published	Views	Family All 11
IBM Security Bulletins	Security Bulletin: A vulnerability exists in the restricted shell of the IBM FlashSystem 900	28 Oct 202118:18	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in sed affects IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem V9000 products	29 Mar 202301:48	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in IBM SAN Volume Controller, IBM Storwize, and IBM FlashSystem shipped with Cloud Pak System	13 Aug 202215:23	–	ibm
Circl	CVE-2021-29873	21 Oct 202120:37	–	circl
CNNVD	IBM Flash System 900 安全漏洞	20 Oct 202100:00	–	cnnvd
CNVD	IBM Flash System 900 has unspecified vulnerabilities	1 Dec 202100:00	–	cnvd
CVE	CVE-2021-29873	21 Oct 202116:40	–	cve
EUVD	EUVD-2021-16347	7 Oct 202500:30	–	euvd
NVD	CVE-2021-29873	21 Oct 202117:15	–	nvd
OSV	CVE-2021-29873	21 Oct 202117:15	–	osv

[
  {
    "product": "FlashSystem 900",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "1.6.1.4"
      },
      {
        "status": "affected",
        "version": "1.5.2.10"
      }
    ]
  },
  {
    "product": "FlashSystem V9000",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "7.8"
      },
      {
        "status": "affected",
        "version": "8.4"
      }
    ]
  },
  {
    "product": "Storwize V3500",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "7.8"
      },
      {
        "status": "affected",
        "version": "8.4"
      }
    ]
  },
  {
    "product": "Storwize V5000",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "7.8"
      },
      {
        "status": "affected",
        "version": "8.4"
      }
    ]
  },
  {
    "product": "Storwize V5100",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "8.4"
      },
      {
        "status": "affected",
        "version": "7.8"
      }
    ]
  },
  {
    "product": "FlashSystem 9100 Family",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "8.4"
      },
      {
        "status": "affected",
        "version": "7.8"
      }
    ]
  },
  {
    "product": "Storwize V3700",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "7.8"
      },
      {
        "status": "affected",
        "version": "8.4"
      }
    ]
  },
  {
    "product": "SAN Volume Controller",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "7.8"
      },
      {
        "status": "affected",
        "version": "8.4"
      }
    ]
  },
  {
    "product": "Storwize V7000",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "8.4"
      },
      {
        "status": "affected",
        "version": "7.8"
      }
    ]
  },
  {
    "product": "Spectrum Virtualize Software",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "7.8"
      },
      {
        "status": "affected",
        "version": "8.4"
      }
    ]
  },
  {
    "product": "Spectrum Virtualize for Public Cloud",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "7.8"
      },
      {
        "status": "affected",
        "version": "8.4"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/6507091
ibm	www.ibm.com/support/pages/node/6497111
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/206229

21 Oct 2021 16:40Current

7.8High risk

Vulners AI Score7.8

CVSS 38.8

EPSS0.01477