Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
spectrum scale vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2019-4259
A security vulnerability has been identified in IBM Spectrum Scale 4.1.1, 4.2.0, 4.2.1, 4.2.2, 4.2.3, and 5.0.0 with CES stack enabled that could allow sensitive data to be included with service snaps. IBM X-Force ID: 160011.
Ibm Spectrum Scale
5.5
CVSSv3
CVE-2020-4851
IBM Spectrum Scale 5.0.0 up to and including 5.0.5.5 and 5.1.0 up to and including 5.1.0.2 could allow a local user to poison log files which could impact support and development efforts. IBM X-Force ID: 190450.
Ibm Spectrum Scale
4.4
CVSSv3
CVE-2020-4890
IBM Spectrum Scale 5.0.0 up to and including 5.0.5.5 and 5.1.0 up to and including 5.1.0.2 could allow a local user with a valid role to the REST API to cause a denial of service due to weak or absense of rate limiting. IBM X-Force ID: 190973.
Ibm Spectrum Scale
5.5
CVSSv3
CVE-2020-4891
IBM Spectrum Scale 5.0.0 up to and including 5.0.5.5 and 5.1.0 up to and including 5.1.0.2 uses an inadequate account lockout setting that could allow a local user er to brute force Rest API account credentials. IBM X-Force ID: 190974.
Ibm Spectrum Scale
6
CVSSv3
CVE-2020-4981
IBM Spectrum Scale 5.0.4.1 up to and including 5.1.0.3 could allow a local privileged user to overwrite files due to improper input validation. IBM X-Force ID: 192541.
Ibm Spectrum Scale
6.7
CVSSv3
CVE-2021-29708
IBM Spectrum Scale 5.1.0.1 could allow a local with access to the GUI pod container to obtain sensitive cryptographic keys that could allow them to elevate their privileges. IBM X-Force ID: 200883.
Ibm Spectrum Scale 5.1.0.1
8.4
CVSSv3
CVE-2022-41739
IBM Spectrum Scale (IBM Spectrum Scale Container Native Storage Access 5.1.2.1 up to and including 5.1.6.0) could allow programs running inside the container to overcome isolation mechanism and gain additional capabilities or access sensitive information on the host. IBM X-Force...
Ibm Spectrum Scale Container Native Storage Access
6.5
CVSSv3
CVE-2022-22411
IBM Spectrum Scale Data Access Services (DAS) 5.1.3.1 could allow an authenticated user to insert code which could allow the malicious user to manipulate cluster resources due to excessive permissions. IBM X-Force ID: 223016.
Ibm Spectrum Scale Data Access Services 5.1.3.1
5.5
CVSSv3
CVE-2020-4756
IBM Spectrum Scale V4.2.0.0 through V4.2.3.23 and V5.0.0.0 through V5.0.5.2 as well as IBM Elastic Storage System 6.0.0 up to and including 6.0.1.0 could allow a local malicious user to invoke a subset of ioctls on the device with invalid arguments that could crash the keneral an...
Ibm Spectrum Scale
Ibm Elastic Storage Server
9.1
CVSSv3
CVE-2020-4926
A vulnerability in the Spectrum Scale 5.1 core component and IBM Elastic Storage System 6.1 could allow unauthorized access to user data or injection of arbitrary data in the communication protocol. IBM X-Force ID: 191600.
Ibm Elastic Storage System
Ibm Spectrum Scale
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »