Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM6CB6147024277A004B4485C37303C37147D2AAF15C8B9067CE0343CB73FCC6F4
HistoryJun 23, 2018 - 7:41 a.m.

Security Bulletin: GNU C library (glibc) vulnerability affects IBM Storwize V7000 Unified (CVE-2013-7423)

2018-06-2307:41:09
www.ibm.com
5

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

JSON

Summary

IBM Storwize V7000 Unified is shipped with GNU glibc, for which a fix is available for a security vulnerability.

Vulnerability Details

CVEID: CVE-2013-7423

DESCRIPTION: GNU glibc could allow a local attacker to obtain sensitive information, caused by an issue that could occur under high load. An attacker could exploit this vulnerability to obtain sensitive information.

CVSS Base Score: 1.2
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/100647&gt; for more information
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:L/AC:H/Au:N/C:P/I:N/A:N)

Affected Products and Versions

IBM Storwize V7000 Unified
The product is affected when running a code releases 1.5.0.0 to 1.5.2.1

Remediation/Fixes

A fix for these issues is in version 1.5.2.2 of IBM Storwize V7000 Unified. Customers running an affected version of V7000 Unified should upgrade to 1.5.2.2 or a later version, so that the fix gets applied.

Latest Storwize V7000 Unified Software

Workarounds and Mitigations

Workaround(s): None

Mitigation(s): None

CPENameOperatorVersion
ibm storwize v7000 unified (2073)eq1.5

Related

ibm 15
redhat 4
ubuntucve 1
nessus 24
prion 1
f5 2
debiancve 1
cve 1
openvas 16
centos 2
securityvulns 2
oraclelinux 2
amazon 2
ubuntu 1
mageia 1
zdt 1
packetstorm 1
gentoo 1
debian 1
osv 1
ibm
ibm
Security Bulletin: Vulnerability in Open Source GNU glibc affects IBM OS Images for Red Hat Linux Systems. (CVE-2013-7423)
2018-06-15 07:03:46
Security Bulletin: IBM Netezza Host Management is vulnerable to a published glibc vulnerability (CVE-2013-7423)
2019-10-18 03:10:29
Security Bulletin: GNU C library (glibc) vulnerability affects IBM SONAS (CVE-2013-7423)
2018-06-18 00:09:54
redhat
redhat
(RHSA-2016:1207) Moderate: glibc security update
2016-06-07 05:18:46
(RHSA-2015:0863) Moderate: glibc security and bug fix update
2015-04-21 00:00:00
(RHSA-2015:2199) Moderate: glibc security, bug fix, and enhancement update
2015-11-19 14:39:58
ubuntucve
ubuntucve
CVE-2013-7423
2015-02-24 00:00:00
nessus
nessus
RHEL 6 : glibc (RHSA-2016:1207)
2016-06-07 00:00:00
Mandriva Linux Security Advisory : glibc (MDVSA-2015:218)
2015-05-01 00:00:00
Oracle Linux 6 : glibc (ELSA-2015-0863)
2015-04-22 00:00:00
prion
prion
Design/Logic Flaw
2015-02-24 15:59:00
f5
f5
SOL16841 - GNU C Library (glibc) vulnerability CVE-2013-7423
2015-07-02 00:00:00
K16841 : GNU C Library (glibc) vulnerability CVE-2013-7423
2015-11-12 00:00:00
debiancve
debiancve
CVE-2013-7423
2015-02-24 15:59:00
cve
cve
CVE-2013-7423
2015-02-24 15:59:00
openvas
openvas
RedHat Update for glibc RHSA-2015:0863-01
2015-04-22 00:00:00
Amazon Linux: Security Advisory (ALAS-2015-513)
2015-09-08 00:00:00
Oracle: Security Advisory (ELSA-2015-0863)
2015-10-06 00:00:00
centos
centos
glibc, nscd security update
2015-04-21 13:07:39
glibc, nscd security update
2015-11-30 19:30:07
securityvulns
securityvulns
GNU glibc security vulnerabilities
2015-05-05 00:00:00
[ MDVSA-2015:218 ] glibc
2015-05-05 00:00:00
oraclelinux
oraclelinux
glibc security and bug fix update
2015-04-21 00:00:00
glibc security, bug fix, and enhancement update
2015-11-24 00:00:00
amazon
amazon
Medium: glibc
2015-04-22 16:12:00
Important: glibc
2015-12-14 10:00:00
ubuntu
ubuntu
GNU C Library vulnerabilities
2015-02-26 00:00:00
mageia
mageia
Updated glibc packages fix security vulnerabilities
2015-05-06 18:16:01
zdt
zdt
Moxa Command Injection / Cross Site Scripting Vulnerabilities
2021-09-01 00:00:00
packetstorm
packetstorm
Moxa Command Injection / Cross Site Scripting / Vulnerable Software
2021-09-01 00:00:00
gentoo
gentoo
GNU C Library: Multiple vulnerabilities
2016-02-17 00:00:00
debian
debian
[SECURITY] [DLA 165-1] eglibc security update
2015-03-06 15:39:53
osv
osv
eglibc - security update
2015-03-06 00:00:00

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

JSON
Related for 6CB6147024277A004B4485C37303C37147D2AAF15C8B9067CE0343CB73FCC6F4
ibm15redhat4ubuntucve1nessus24prion1f52debiancve1cve1openvas16centos2securityvulns2oraclelinux2amazon2ubuntu1mageia1zdt1packetstorm1gentoo1debian1osv1