72 matches found
CVE-2016-0361
IBM General Parallel File System GPFS 3.5 before 3.5.0.29 efix 6 and 4.1.1 before 4.1.1.4 efix 9, when the Spectrum Scale GUI is used with DB2 on Linux, UNIX and Windows, allows remote authenticated users to obtain sensitive information via unspecified vectors, as demonstrated by discovering ADMI...
Command injection
IBM Spectrum Scale 4.1 before 4.1.1.5 and 4.2 before 4.2.0.2 and General Parallel File System 3.5 before 3.5.0.30 allow local users to gain privileges or cause a denial of service via a crafted mmapplypolicy command...
CVE-2016-0263
IBM Spectrum Scale/GPFS (CVE-2016-0263) can allow a local user to escalate privileges or cause a denial of service when the mmapplypolicy command is used with certain options. Affected products include IBM Spectrum Scale V4.2, V4.1 and General Parallel File System V3.5 (and related ESS/GPFS deplo...
CVE-2016-0263
IBM Spectrum Scale 4.1 before 4.1.1.5 and 4.2 before 4.2.0.2 and General Parallel File System 3.5 before 3.5.0.30 allow local users to gain privileges or cause a denial of service via a crafted mmapplypolicy command...
CVE-2016-0392
IBM General Parallel File System GPFS in GPFS Storage Server 2.0.0 through 2.0.7 and Elastic Storage Server 2.5.x through 2.5.5, 3.x before 3.5.5, and 4.x before 4.0.3, as distributed in Spectrum Scale RAID, allows local users to gain privileges via a crafted parameter to a setuid program...
CVE-2016-0392
IBM General Parallel File System GPFS in GPFS Storage Server 2.0.0 through 2.0.7 and Elastic Storage Server 2.5.x through 2.5.5, 3.x before 3.5.5, and 4.x before 4.0.3, as distributed in Spectrum Scale RAID, allows local users to gain privileges via a crafted parameter to a setuid program...
IBM Spectrum Scale and General Parallel File System Arbitrary Code Execution Vulnerability
IBM GPFS is an enterprise file management system optimized for petabyte-scale storage management.IBM Spectrum Scale is a data and file management solution based on IBM GPFS. A security vulnerability exists in IBM Spectrum Scale and GPFS that could be exploited by a local attacker to inject...
IBM Spectrum Scale and General Parallel File System Elevation of Privilege Vulnerability
IBM GPFS is an enterprise file management system optimized for petabyte-scale storage management.IBM Spectrum Scale is a data and file management solution based on IBM GPFS. IBM Spectrum Scale and IBM GPFS have a security vulnerability in the handling of the mmapplypolicy command that allows a...
IBM Spectrum Scale and General Parallel File System Denial of Service Vulnerability
IBM Spectrum Scale and General Parallel File System GPFS are both products of IBM Corporation of the U.S.A. IBM GPFS is an enterprise file management system optimized for petabyte-scale storage management.IBM Spectrum Scale is a set of data and file management solutions based on IBM GPFS. IBM...
IBM Spectrum Scale (GPFS) Hadoop Connector Vulnerable
IBM Spectrum Scale and General Parallel File System GPFS is a scalable data and file management solution based on IBM GPFS an enterprise file management system optimized for petabyte-scale storage management from IBM, USA. The solution helps customers reduce storage costs while improving security...
CVE-2015-7430
The Hadoop connector 1.1.1, 2.4, 2.5, and 2.7.0-0 before 2.7.0-3 for IBM Spectrum Scale and General Parallel File System GPFS allows local users to read or write to arbitrary GPFS data via unspecified vectors...
CVE-2015-7430
The IBM Spectrum Scale (GPFS) Hadoop Connector is affected by CVE-2015-7430, impacting versions 1.1.1, 2.4, 2.5, and 2.7.0-0 through 2.7.0-2. An unprivileged user could read, write, modify, or delete GPFS data via unspecified vectors. The issue is mitigated by upgrading to version 2.7.0-3. IBM pr...
CVE-2015-7430
The Hadoop connector 1.1.1, 2.4, 2.5, and 2.7.0-0 before 2.7.0-3 for IBM Spectrum Scale and General Parallel File System GPFS allows local users to read or write to arbitrary GPFS data via unspecified vectors...
IBM General Parallel File System and Spectrum Scale Operating System Command Injection Vulnerability
IBM General Parallel File System GPFS and Spectrum Scale are both products of IBM USA. The former is a scalable, highly available, high-performance enterprise file management system optimized for petabyte-scale storage management. The latter is a set of software-defined Spectrum storage solutions...
CVE-2015-4974
IBM General Parallel File System GPFS 3.5.x before 3.5.0.27 and 4.1.x before 4.1.1.2 and Spectrum Scale 4.1.1.x before 4.1.1.2 allow local users to obtain root privileges for command execution via unspecified vectors...
IBM DB2 10.5 < Fix Pack 6 Multiple Vulnerabilities (Bar Mitzvah)
According to its version, the installation of IBM DB2 10.5 running on the remote host is prior to Fix Pack 6. It is, therefore, affected by the following vulnerabilities : - A flaw exists in the IBM Global Security Kit GSKit when handling RSA temporary keys in a non-export RSA key exchange...
IBM DB2 10.5 <= Fix Pack 5 Multiple Vulnerabilities
According to its version, the installation of IBM DB2 running on the remote host is version 10.5 prior or equal to Fix Pack 5. It is, therefore, affected by one or more of the following vulnerabilities : - An unspecified error exists during the handling of SELECT statements with XML/XSLT function...
IBM General Parallel File System Information Disclosure Vulnerability
IBM General Parallel File System GPFS is a scalable, highly available, high-performance enterprise file management system optimized for petabyte-scale storage management from IBM in the United States. A security vulnerability exists in the /usr/lpp/mmfs/bin/gpfs.snap file in IBM GPFS version 4.1....
CVE-2015-0199
The mmfslinux kernel module in IBM General Parallel File System GPFS 3.4 before 3.4.0.32, 3.5 before 3.5.0.24, and 4.1 before 4.1.0.7 allows local users to cause a denial of service memory corruption via unspecified character-device ioctl calls...
CVE-2015-0199
The mmfslinux kernel module in IBM General Parallel File System GPFS 3.4 before 3.4.0.32, 3.5 before 3.5.0.24, and 4.1 before 4.1.0.7 allows local users to cause a denial of service memory corruption via unspecified character-device ioctl calls...