CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-43831 – IBM Spectrum Scale privilege escalation
https://notcve.org/view.php?id=CVE-2022-43831
IBM Storage Scale Container Native Storage Access 5.1.2.1 through 5.1.6.1 could allow a local user to obtain escalated privileges on a host without proper security context settings configured. IBM X-Force ID: 238941. IBM Storage Scale Container Native Storage Access de la versión 5.1.2.1 a la versión 5.1.6.1 podría permitir a un usuario local obtener privilegios escalados en un host sin la configuración de contexto de seguridad adecuada. ID de IBM X-Force: 238941. • https://exchange.xforce.ibmcloud.com/vulnerabilities/238941 https://www.ibm.com/support/pages/node/7015067 •
CVSS: 8.4EPSS: 0%CPEs: 2EXPL: 0CVE-2022-41736 – IBM Spectrum Scale Container Native Storage Access privilege escalation
https://notcve.org/view.php?id=CVE-2022-41736
IBM Spectrum Scale Container Native Storage Access 5.1.2.1 through 5.1.6.0 contains an unspecified vulnerability that could allow a local user to obtain root privileges. IBM X-Force ID: 237810. • https://exchange.xforce.ibmcloud.com/vulnerabilities/237810 https://www.ibm.com/support/pages/node/6964564 •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2022-41739 – IBM Spectrum Scale privilege escalation
https://notcve.org/view.php?id=CVE-2022-41739
IBM Spectrum Scale (IBM Spectrum Scale Container Native Storage Access 5.1.2.1 through 5.1.6.0) could allow programs running inside the container to overcome isolation mechanism and gain additional capabilities or access sensitive information on the host. IBM X-Force ID: 237815. • https://exchange.xforce.ibmcloud.com/vulnerabilities/237815 https://www.ibm.com/support/pages/node/6964568 •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2022-43867 – IBM Spectrum Scale command execution
https://notcve.org/view.php?id=CVE-2022-43867
IBM Spectrum Scale 5.1.0.1 through 5.1.4.1 could allow a local attacker to execute arbitrary commands in the container. IBM X-Force ID: 239437. IBM Spectrum Scale v5.1.0.1 a v5.1.4.1 podría permitir que un atacante local ejecute comandos arbitrarios en el contenedor. ID de IBM X-Force: 239437. • https://exchange.xforce.ibmcloud.com/vulnerabilities/239437 https://www.ibm.com/support/pages/node/6844771 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •