Active Cloud Engine (ACE) in IBM Storwize V7000 Unified 1.3.0.0 up to and including 1.4.3.x allows remote malicious users to bypass intended ACL restrictions in opportunistic circumstances by leveraging incorrect ACL synchronization over an unreliable NFS connection that requires retransmissions.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm storwize_unified_v7000_software 1.3.0.0 |
||
ibm storwize_unified_v7000_software 1.4.0.5 |
||
ibm storwize_unified_v7000_software 1.4.1.0 |
||
ibm storwize_unified_v7000_software 1.4.0.1 |
||
ibm storwize_unified_v7000_software 1.4.0.2 |
||
ibm storwize_unified_v7000_software 1.4.3.0 |
||
ibm storwize_unified_v7000_software 1.4.3.1 |
||
ibm storwize_unified_v7000_software 1.3.1.0 |
||
ibm storwize_unified_v7000_software 1.4.0.0 |
||
ibm storwize_unified_v7000_software 1.4.1.1 |
||
ibm storwize_unified_v7000_software 1.4.2.0 |
||
ibm storwize_unified_v7000_software 1.4.2.1 |
||
ibm storwize_unified_v7000_software 1.4.0.3 |
||
ibm storwize_unified_v7000_software 1.4.0.4 |
||
ibm storwize_unified_v7000_software 1.4.3.2 |
||
ibm storwize_unified_v7000 - |