Описание
A security vulnerability has been identified in all levels of IBM Spectrum Scale V5.0.0.0 through V5.0.3.2 and IBM Spectrum Scale V4.2.0.0 through V4.2.3.17 that could allow a local attacker to obtain root privilege by injecting parameters into setuid files.
Ссылки
- VDB EntryVendor Advisory
- MitigationPatchVendor Advisory
- VDB EntryVendor Advisory
- MitigationPatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 4.2.0.0 (включая) до 4.2.3.17 (включая)Версия от 5.0.0.0 (включая) до 5.0.3.2 (включая)
Одно из
cpe:2.3:a:ibm:spectrum_scale:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_scale:*:*:*:*:*:*:*:*
EPSS
Процентиль: 36%
0.00148
Низкий
8.1 High
CVSS3
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-74
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
A security vulnerability has been identified in all levels of IBM Spectrum Scale V5.0.0.0 through V5.0.3.2 and IBM Spectrum Scale V4.2.0.0 through V4.2.3.17 that could allow a local attacker to obtain root privilege by injecting parameters into setuid files.
EPSS
Процентиль: 36%
0.00148
Низкий
8.1 High
CVSS3
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-74