Published: 12/09/2014 Updated: 29/08/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Subscribe to San Volume Controller Software

IBM Storwize 3500, 3700, 5000, and 7000 devices and SAN Volume Controller 6.x and 7.x prior to 7.2.0.8 allow remote malicious users to reset the administrator superuser password to its default value via a direct request to the administrative IP address.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ibm san volume controller software 6.1.0.5
ibm san volume controller software 6.1.0.6
ibm san volume controller software 6.2.0.3
ibm san volume controller software 6.1.0.10
ibm san volume controller software 6.1.0.2
ibm san volume controller software 6.1.0.9
ibm san volume controller software 6.2.0.0
ibm san volume controller software 6.3.0.1
ibm san volume controller software 6.3.0.2
ibm san volume controller software 6.4.0.1
ibm san volume controller software 6.4.0.2
ibm san volume controller software 6.4.1.5
ibm san volume controller software 6.4.1.6
ibm san volume controller software 7.1.0.6
ibm san volume controller software 7.1.0.7
ibm san volume controller software 7.2.0.6
ibm san volume controller software 7.2.0.7
ibm san volume controller software 6.1.0.3
ibm san volume controller software 6.1.0.4
ibm san volume controller software 6.2.0.1
ibm san volume controller software 6.2.0.2
ibm san volume controller software 6.3.0.3
ibm san volume controller software 6.3.0.4
ibm san volume controller software 6.4.0.3
ibm san volume controller software 6.4.0.4
ibm san volume controller software 6.4.1.7
ibm san volume controller software 6.4.1.8
ibm san volume controller software 7.1.0.0
ibm san volume controller software 7.2.0.0
ibm san volume controller software 7.2.0.1
ibm storwize v3500 -
ibm storwize v3700 -
ibm san volume controller software 6.2.0.4
ibm san volume controller software 6.2.0.5
ibm san volume controller software 6.3.0.5
ibm san volume controller software 6.3.0.6
ibm san volume controller software 6.4.1.1
ibm san volume controller software 6.4.1.2
ibm san volume controller software 7.1.0.1
ibm san volume controller software 7.1.0.2
ibm san volume controller software 7.2.0.2
ibm san volume controller software 7.2.0.3
ibm storwize v5000 -
ibm storwize v7000 -
ibm san volume controller software 6.1.0.0
ibm san volume controller software 6.1.0.1
ibm san volume controller software 6.1.0.7
ibm san volume controller software 6.1.0.8
ibm san volume controller software 6.2.0.6
ibm san volume controller software 6.3.0.0
ibm san volume controller software 6.3.0.7
ibm san volume controller software 6.4.0.0
ibm san volume controller software 6.4.1.3
ibm san volume controller software 6.4.1.4
ibm san volume controller software 7.1.0.3
ibm san volume controller software 7.1.0.5
ibm san volume controller software 7.2.0.4
ibm san volume controller software 7.2.0.5

CWE-255 http://www.ibm.com/support/docview.wss?uid=ssg1S1004846 http://www.securityfocus.com/bid/69771 http://secunia.com/advisories/61075 https://exchange.xforce.ibmcloud.com/vulnerabilities/95387 https://nvd.nist.gov

Get Started

CVE-2014-4811

Vulnerability Summary

References

Vulmon Search

About

Products

Connect