Spectrum Scale Security Vulnerabilities and Issues — Spectrum Scale CVE List

Lucene search

IbmSpectrum Scale

4 matches found

CVE•added 2021/04/27 5:15 p.m.•42 views

CVE-2021-29667

IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.2 is potentially vulnerable to CSV Injection. A remote attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 199403.

7.8CVSS7.8AI score0.00313EPSS

CVE•added 2021/04/27 5:15 p.m.•34 views

CVE-2020-4981

IBM Spectrum Scale 5.0.4.1 through 5.1.0.3 could allow a local privileged user to overwrite files due to improper input validation. IBM X-Force ID: 192541.

6CVSS5.6AI score0.00035EPSS

CVE•added 2021/04/09 5:15 p.m.•32 views

CVE-2021-29671

IBM Spectrum Scale 5.1.0.1 could allow a local attacker to bypass the filesystem audit logging mechanism when file audit logging is enabled. IBM X-Force ID: 199478.

4CVSS3.8AI score0.00038EPSS

CVE•added 2021/04/27 5:15 p.m.•31 views

CVE-2021-29666

IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session....

5.4CVSS5.5AI score0.00158EPSS