Spectrum Scale@5.0.0.0 Security Vulnerabilities and Issues — Spectrum Scale@5.0.0.0 CVE List

Lucene search

IbmSpectrum Scale5.0.0.0

8 matches found

CVE•added 2018/03/02 5:29 p.m.•44 views

CVE-2017-1654

IBM Spectrum Scale 4.1.1 and 4.2.0 - 4.2.3 could allow a local unprivileged user access to information located in dump files. User data could be sent to IBM during service engagements. IBM X-Force ID: 133378.

4CVSS3.4AI score0.00054EPSS

CVE•added 2020/08/31 1:15 p.m.•44 views

CVE-2020-4492

IBM Spectrum Scale V5.0.0.0 through V5.0.4.3 and V4.2.0.0 through V4.2.3.21 could allow a local attacker to cause a denial of service crashing the kernel by sending a subset of ioctls on the device with invalid arguments. IBM X-Force ID: 181992.

6.2CVSS5.1AI score0.00058EPSS

CVE•added 2020/05/19 2:15 p.m.•42 views

CVE-2020-4411

The Spectrum Scale 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.3 file system component is affected by a denial of service vulnerability in its kernel module that could allow an attacker to cause a denial of service condition on the affected system. To exploit this vulnerability, a local atta...

7.1CVSS6.3AI score0.00043EPSS

CVE•added 2019/10/09 4:15 p.m.•38 views

CVE-2019-4558

A security vulnerability has been identified in all levels of IBM Spectrum Scale V5.0.0.0 through V5.0.3.2 and IBM Spectrum Scale V4.2.0.0 through V4.2.3.17 that could allow a local attacker to obtain root privilege by injecting parameters into setuid files.

8.1CVSS7.3AI score0.00177EPSS

CVE•added 2020/05/27 2:15 p.m.•35 views

CVE-2020-4348

IBM Spectrum Scale 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.4 could allow an authenticated GUI user to perform unauthorized actions due to missing function level access control. IBM X-Force ID: 178414

6.5CVSS6.2AI score0.00102EPSS

CVE•added 2020/05/19 2:15 p.m.•34 views

CVE-2020-4412

The Spectrum Scale 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.3 file system component is affected by a denial of service security vulnerability. An attacker can force the Spectrum Scale mmfsd/mmsdrserv daemons to unexpectedly exit, impacting the functionality of the Spectrum Scale cluster a...

5.3CVSS5.3AI score0.00316EPSS

CVE•added 2020/10/20 3:15 p.m.•34 views

CVE-2020-4756

IBM Spectrum Scale V4.2.0.0 through V4.2.3.23 and V5.0.0.0 through V5.0.5.2 as well as IBM Elastic Storage System 6.0.0 through 6.0.1.0 could allow a local attacker to invoke a subset of ioctls on the device with invalid arguments that could crash the keneral and cause a denial of service. IBM X-Fo...

6.2CVSS5.1AI score0.00048EPSS

CVE•added 2020/10/20 3:15 p.m.•31 views

CVE-2020-4491

IBM Spectrum Scale V4.2.0.0 through V4.2.3.22 and V5.0.0.0 through V5.0.5 could allow a local attacker to cause a denial of service by sending a large number of RPC requests to the mmfsd daemon which would cause the service to crash. IBM X-Force ID: 181991.

5.5CVSS5.3AI score0.00043EPSS