Published: 21/06/2017 Updated: 21/05/2021

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

CVSS v3 Base Score: 6.2 | Impact Score: 4.7 | Exploitability Score: 1.4

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

IBM has identified a vulnerability with IBM Spectrum Scale/GPFS utilized on the Elastic Storage Server (ESS)/GPFS Storage Server (GSS) during testing of an unsupported configuration, where users applications are running on an active ESS I/O server node and utilize direct I/O to perform a read or a write to a Spectrum Scale file. This vulnerability may result in the use of an incorrect memory address, leading to a Spectrum Scale/GPFS daemon failure with a Signal 11, and possibly leading to denial of service or undetected data corruption. IBM X-Force ID: 125458.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ibm elastic storage server 2.0.0
ibm elastic storage server 2.5.0
ibm elastic storage server 2.5.5
ibm elastic storage server 3.0.0
ibm elastic storage server 3.0.5
ibm elastic storage server 3.5.0
ibm elastic storage server 3.5.6
ibm elastic storage server 4.0.0
ibm elastic storage server 4.0.6
ibm elastic storage server 4.5.0
ibm elastic storage server 4.6.0
ibm elastic storage server 5.0.0
ibm elastic storage server 5.0.1

CWE-119 https://exchange.xforce.ibmcloud.com/vulnerabilities/125458 http://www.ibm.com/support/docview.wss?uid=ssg1S1010230 http://www.securityfocus.com/bid/99274 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-1304

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect