93 matches found
EUVD-2020-26003
Malware in sbrugna...
EUVD-2020-26262
Malware in sbrugna...
EUVD-2020-26173
Malware in sbrugna...
EUVD-2022-46839
Malicious code in bioql PyPI...
CVE-2022-43869
IBM Spectrum Scale 5.1.0.0 through 5.1.2.8 and 5.1.3.0 through 5.1.5.1 and IBM Elastic Storage System 6.1.0.0 through 6.1.2.4 and 6.1.3.0 through 6.1.4.1 could allow an authenticated user to cause a denial of service through the GUI using a format string attack. IBM X-Force ID: 239539...
Security Bulletin: There are multiple vulnerabilities in IBM WebSphere Application Server that can affect IBM Elastic Storage System that are now included
Summary There are multiple vulnerabilities in IBM WebSphere Application Server, used by IBM Storage Scale Elastic Storage System, which could provide weaker than expected security that are now fixed. Vulnerability Details CVEID:CVE-2024-25026 DESCRIPTION: IBM WebSphere Application Server 8.5, 9.0...
Security Bulletin: Linux Kernel vulnerability may affect IBM Elastic Storage System (CVE-2023-28466)
Summary There is a vulnerability in the Linux kernel, used by IBM Elastic Storage System, which could allow a denial of service. Vulnerability Details CVEID:CVE-2023-28466 DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by the lack of a locksock call in dotlsgetsockopt in...
Security Bulletin: glibc vulnerability affects IBM Elastic Storage System (CVE-2023-4911)
Summary IBM Elastic Storage System is shipped with GNU glibc, for which a fix is available for a security vulnerability. Vulnerability Details CVEID:CVE-2023-4911 DESCRIPTION: glibc could allow a local authenticated attacker to gain elevated privileges on the system, caused by a buffer overflow i...
Security Bulletin: Multiple Linux Kernel vulnerabilities may affect IBM Elastic Storage System
Summary There are some vulnerabilities in the Linux kernel, used by IBM Elastic Storage System, which could allow a denial of service. Fixes for these vulnerabilities are available. Vulnerability Details CVEID:CVE-2023-32233 DESCRIPTION: Linux Kernel could allow a local authenticated attacker to...
Security Bulletin: IBM Elastic Storage System is affected by a vulnerability in OpenSSL (CVE-2022-4304)
Summary A security vulnerability has been discovered in OpenSSL. Fix for all versions is available. Vulnerability Details CVEID:CVE-2022-4304 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by a timing-based side channel in the RSA Decryption...
Security Bulletin: A vulnerability in IBM WebSphere Application Server Liberty affects IBM Storage Scale packaged in IBM Elastic Storage System (CVE-2023-24998)
Summary There is a vulnerability in IBM WebSphere Application Server Liberty, used by IBM Elastic Storage System, which could allow a remote attacker to cause a denial of service. Vulnerability Details CVEID:CVE-2023-24998 DESCRIPTION: Apache Commons FileUpload and Tomcat are vulnerable to a deni...
Security Bulletin: IBM Elastic Storage System is affected by a vulnerability in OpenSSL (CVE-2022-4450)
Summary A security vulnerability has been discovered in OpenSSL. Vulnerability Details CVEID:CVE-2022-4450 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a double-free error related to the improper handling of specific PEM data by the PEMreadbioex function. By sending...
Security Bulletin: Multiple Linux Kernel vulnerabilities may affect IBM Elastic Storage System
Summary There are multiple vulnerabilities in the Linux kernel, used by IBM Elastic Storage System, which could allow a denial of service. Fixes for these vulnerabilities are available. Vulnerability Details CVEID:CVE-2022-4269 DESCRIPTION: Linux Kernel is vulnerable to a denial of service, cause...
Security Bulletin: Vulnerability in the Flask repo may affect affect IBM Elastic Storage System (CVE-2023-30861)
Summary There is a vulnerability in the flask repo, used by IBM Elastic Storage System, which could allow a remote attacker to obtain sensitive information. Vulnerability Details CVEID:CVE-2023-30861 DESCRIPTION: Pallets Flask could allow a remote attacker to obtain sensitive information, caused ...
Security Bulletin: Multiple vulnerabilities in the werkzeug repo affect IBM Elastic Storage System
Summary There is a vulnerability in the werkzeug repo, used by IBM Elastic Storage System, which could allow a denial of service. Vulnerability Details CVEID:CVE-2023-25577 DESCRIPTION: Pallets Werkzeug is vulnerable to a denial of service, caused by a flaw when parsing multipart form data with...
Security Bulletin: Multiple Linux Kernel vulnerabilities may affect IBM Elastic Storage System
Summary There are some vulnerabilities in the Linux kernel, used by IBM Elastic Storage System, which could allow a denial of service. Fixes for these vulnerabilities are available. Vulnerability Details CVEID:CVE-2022-42703 DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused b...
PT-2023-22688 · Ibm · Ibm Elastic Storage System +1
Name of the Vulnerable Software and Affected Versions: IBM Storage Scale versions 5.1.0.0 through 5.1.6.1 IBM Elastic Storage Systems versions 6.1.0.0 through 6.1.6.0 Description: The issue could allow a local user to cause a kernel panic. Recommendations: For IBM Storage Scale versions 5.1.0.0...
Security Bulletin: IBM Elastic Storage System is affected by a vulnerability in IBM Spectrum Scale (CVE-2023-30434)
Summary IBM Elastic Storage Systems are affected by a vulnerability in IBM Spectrum Scale that could allow a local user to cause the kernel to panic. A fix for this vulnerability is available. Vulnerability Details CVEID:CVE-2023-30434 DESCRIPTION: IBM Storage Scale could allow a local user to...
Security Bulletin: A vulnerability in Python affects IBM Elastic Storage System (CVE-2022-0391)
Summary Security vulnerability has been discovered in Python used by Elastic Storage System. Vulnerability Details CVEID:CVE-2022-0391 DESCRIPTION: Python could provide weaker than expected security, cause by a improper input validation by the urllib.parse module. By sending a specially-crafted...
Security Bulletin: Multiple Linux Kernel vulnerabilities may affect IBM Elastic Storage System
Summary There is a vulnerability in Linux kernel, used by IBM Elastic Storage System, which could allow a denial of service. Fixes for these vulnerabilities are available. Vulnerability Details CVEID:CVE-2022-1012 DESCRIPTION: Linux Kernel could allow a remote attacker to obtain sensitive...