37 matches found
PT-2023-14370 · Ibm · Ibm Storage Scale Container Native Storage Access
Name of the Vulnerable Software and Affected Versions: IBM Storage Scale Container Native Storage Access versions 5.1.2.1 through 5.1.6.1 Description: The issue allows a local user to obtain escalated privileges on a host without proper security context settings configured. Recommendations: For...
Security Bulletin: A vulnerability in IBM Storage Scale Container Native that could allow a local user to obtain escalated privileges on a host (CVE-2022-43831)
Summary A security vulnerability has been identified in IBM Storage Scale Container Native that could allow a local user to obtain escalated privileges on a host . A fix for this vulnerability is available. Vulnerability Details CVEID:CVE-2022-43831 DESCRIPTION: IBM Spectrum Scale could allow a...
CVE-2022-41736
IBM Spectrum Scale Container Native Storage Access 5.1.2.1 through 5.1.6.0 contains an unspecified vulnerability that could allow a local user to obtain root privileges. IBM X-Force ID: 237810...
CVE-2022-41736
IBM Spectrum Scale Container Native Storage Access 5.1.2.1 through 5.1.6.0 contains an unspecified vulnerability that could allow a local user to obtain root privileges. IBM X-Force ID: 237810...
Input validation
IBM Spectrum Scale Container Native Storage Access 5.1.2.1 through 5.1.6.0 contains an unspecified vulnerability that could allow a local user to obtain root privileges. IBM X-Force ID: 237810...
CVE-2022-41736 IBM Spectrum Scale Container Native Storage Access privilege escalation
IBM Spectrum Scale Container Native Storage Access 5.1.2.1 through 5.1.6.0 contains an unspecified vulnerability that could allow a local user to obtain root privileges. IBM X-Force ID: 237810...
PT-2023-14026 · Ibm · Ibm Spectrum Scale Container Native Storage Access
Name of the Vulnerable Software and Affected Versions: IBM Spectrum Scale Container Native Storage Access versions 5.1.2.1 through 5.1.6.0 Description: The issue could allow a local user to obtain root privileges due to an unspecified vulnerability. Recommendations: For versions 5.1.2.1 through...
CVE-2022-41739
IBM Spectrum Scale IBM Spectrum Scale Container Native Storage Access 5.1.2.1 through 5.1.6.0 could allow programs running inside the container to overcome isolation mechanism and gain additional capabilities or access sensitive information on the host. IBM X-Force ID: 237815...
CVE-2022-41739
IBM Spectrum Scale IBM Spectrum Scale Container Native Storage Access 5.1.2.1 through 5.1.6.0 could allow programs running inside the container to overcome isolation mechanism and gain additional capabilities or access sensitive information on the host. IBM X-Force ID: 237815...
CVE-2022-41739 IBM Spectrum Scale privilege escalation
IBM Spectrum Scale IBM Spectrum Scale Container Native Storage Access 5.1.2.1 through 5.1.6.0 could allow programs running inside the container to overcome isolation mechanism and gain additional capabilities or access sensitive information on the host. IBM X-Force ID: 237815...
Security Bulletin: A vulnerability in IBM Spectrum Scale Container Native that could allow access to confidential information on the host
Summary A security vulnerability has been identified in IBM Spectrum Scale Container Native that could allow access to confidential information on the host. A fix for this vulnerability is available. Vulnerability Details CVEID:CVE-2022-41739 DESCRIPTION: IBM Spectrum Scale could allow programs...
Security Bulletin: A vulnerability in IBM Spectrum Scale Container Native that could allow an attacker acquiring root privileges on the host (CVE-2022-41736)
Summary A security vulnerability has been identified in IBM Spectrum Scale Container Native that could allow an attacker to acquire root privileges on the host using unshare. A fix for this vulnerability is available. Vulnerability Details CVEID:CVE-2022-41736 DESCRIPTION: IBM Spectrum Scale...
CVE-2022-29164 Privilege Escalation in argo-workflows
Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. In affected versions an attacker can create a workflow which produces a HTML artifact containing an HTML file that contains a script which uses XHR calls to interact with the Argo Serv...
CVE-2022-29164
Affected software: Argo Workflows (Kubernetes) Vulnerability summary: An attacker can craft a HTML artifact in a workflow that contains a script using XHR to interact with the Argo Server API. The attacker emails a link to the deep-link artifact; when opened by a victim, the script executes with ...
Security Bulletin: Vulnerability in Apache Log4j (CVE-2021-44228) affects IBM Spectrum Fusion HCI which includes IBM Spectrum Scale Container Native Storage Access and IBM Spectrum Protect Plus
Summary A vulnerability in Apache Log4j could allow an attacker to execute arbitrary code on the system. This vulnerability may affect IBM Spectrum Scale Container Native Storage Access and IBM Spectrum Protect Plus, which are part of the IBM Spectrum Fusion appliance. Vulnerability Details Refer...
Important: Red Hat Security Advisory: Container-native Virtualization security, bug fix, and enhancement update
Red Hat OpenShift Virtualization release 2.4.0 is now available with updates to packages and images that fix several bugs and add enhancements. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which giv...
Moderate: Red Hat Enhancement Advisory: CNV 2.3.0 Images
Container-native virtualization release 2.3.0 is now available with updates to packages and images that fix several bugs and add enhancements. Container-native virtualization is Red Hat's virtualization solution designed for Red Hat OpenShift Container Platform. This advisory contains the followi...