EUVD-2018-12302

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

IBM Spectrum Scale vulnerabilities allow access to arbitrary files by unprivileged users.

Reporter	Title	Published	Views	Family All 14
IBM Security Bulletins	Security Bulletin: IBM Spectrum Scale for IBM Elastic Storage Server is affected by a vulnerability which could allow an unprivileged, authenticated user with access to a GPFS node to read arbitrary files available on this node (CVE-2018-1723)	26 Nov 201816:45	–	ibm
IBM Security Bulletins	Security Bulletin: IBM PureApplication Service is affected by a GPFS vulnerability (CVE-2018-1723)	15 Apr 201911:40	–	ibm
IBM Security Bulletins	Security Bulletin: IBM PureApplication System is affected by a GPFS vulnerability (CVE-2018-1723) for Power on Linux	31 May 201910:40	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities have been identified in DB2 that affect the IBM Performance Management product	26 Mar 201917:35	–	ibm
IBM Security Bulletins	Security Bulletin: IBM PureApplication Service is affected by a GPFS vulnerability (CVE-2018-1723) for Power on Linux	31 May 201910:30	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability has been identified in IBM Spectrum Scale that could allow a unprivileged, auntheticated user to read aribiratry file on node	4 Oct 201807:05	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities have been identified in IBM Db2 shipped with Predictive Maintenance and Quality (CVE-2018-1897, CVE-2018-1723)	13 Dec 201808:40	–	ibm
IBM Security Bulletins	Security Bulletin: IBM® Db2® LUW on AIX and Linux Affected by a Vulnerability in IBM® Spectrum Scale (CVE-2018-1723).	27 Nov 201819:45	–	ibm
IBM Security Bulletins	Security Bulletin: IBM PureApplication System is affected by a GPFS vulnerability (CVE-2018-1723)	31 May 201920:25	–	ibm
CNVD	IBM Security QRadar SIEM Directory Traversal Vulnerability (CNVD-2018-10457)	4 May 201800:00	–	cnvd

[
  {
    "enisaIdVendor": [
      {
        "id": "e0d79b5a-f5a2-39c9-a62b-d2a289d24acf",
        "vendor": {
          "name": "IBM"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "24f4ff98-217b-356c-ae45-e7cecb7b8ee8",
        "product": {
          "name": "Spectrum Scale"
        },
        "product_version": "5.0.1.2"
      },
      {
        "id": "36f107be-8c24-3ab1-bd1d-b24ecc663202",
        "product": {
          "name": "Spectrum Scale"
        },
        "product_version": "4.2.3.10"
      },
      {
        "id": "59509ad8-bde8-3788-8f24-66f6d3654123",
        "product": {
          "name": "Spectrum Scale"
        },
        "product_version": "4.1.1.0"
      },
      {
        "id": "a6701564-16e5-3edf-8921-de8b91c04e41",
        "product": {
          "name": "Spectrum Scale"
        },
        "product_version": "4.1.1.20"
      },
      {
        "id": "aa62f852-ddf6-3b80-9496-c3cf4568cbd1",
        "product": {
          "name": "Spectrum Scale"
        },
        "product_version": "5.0.0"
      },
      {
        "id": "db66aab5-4d10-38f9-872a-c65815035242",
        "product": {
          "name": "Spectrum Scale"
        },
        "product_version": "4.2.0.0"
      }
    ]
  }
]

Source	Link
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/147373
ibm	www.ibm.com/support/docview.wss
securityfocus	www.securityfocus.com/bid/105975
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.2Medium risk

Vulners AI Score6.2

CVSS 35.5 - 6.2

CVSS 22.1

EPSS0.00136