CVE-2016-0361

Опубликовано: 08 авг. 2016

Источник: nvd

CVSS3: 6.5

CVSS2: 4

EPSS Низкий

Описание

IBM General Parallel File System (GPFS) 3.5 before 3.5.0.29 efix 6 and 4.1.1 before 4.1.1.4 efix 9, when the Spectrum Scale GUI is used with DB2 on Linux, UNIX and Windows, allows remote authenticated users to obtain sensitive information via unspecified vectors, as demonstrated by discovering ADMIN passwords.

Ссылки

http://www-01.ibm.com/support/docview.wss?uid=swg21986595
Patch
Vendor Advisory
http://www.securityfocus.com/bid/90550
http://www.securitytracker.com/id/1036455
http://www-01.ibm.com/support/docview.wss?uid=swg21986595
Patch
Vendor Advisory
http://www.securityfocus.com/bid/90550
http://www.securitytracker.com/id/1036455

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:general_parallel_file_system:3.5:*:*:*:*:*:*:*

cpe:2.3:a:ibm:general_parallel_file_system:3.5.0.3:*:*:*:*:*:*:*

cpe:2.3:a:ibm:general_parallel_file_system:3.5.0.7:*:*:*:*:*:*:*

cpe:2.3:a:ibm:general_parallel_file_system:3.5.0.9:*:*:*:*:*:*:*

cpe:2.3:a:ibm:general_parallel_file_system:3.5.0.11:*:*:*:*:*:*:*

cpe:2.3:a:ibm:general_parallel_file_system:3.5.0.16:*:*:*:*:*:*:*

cpe:2.3:a:ibm:general_parallel_file_system:4.1.0.1:*:*:*:*:*:*:*

EPSS

Процентиль: 42%

0.00201

Низкий

6.5 Medium

CVSS3

4 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-4xqq-gqgr-76cf