Page 2 of 10 results (0.004 seconds)

CVSS: 2.1EPSS: 0%CPEs: 28EXPL: 0

IBM General Parallel File System (GPFS) 3.5.x before 3.5.0.27 and 4.1.x before 4.1.1.2 and Spectrum Scale 4.1.1.x before 4.1.1.2 allow local users to obtain sensitive information from system memory via unspecified vectors. IBM General Parallel File System (GPFS) 3.5.x en versiones anteriores a 3.5.0.27 y 4.1.x en versiones anteriores a 4.1.1.2 y Spectrum Scale 4.1.1.x en versiones anteriores a 4.1.1.2 permite a usuarios locales obtener información sensible desde la memoria del sistema a través de vectores no especificados. • http://www-01.ibm.com/support/docview.wss?uid=ssg1S1005366 http://www-01.ibm.com/support/docview.wss?uid=swg21972152 http://www.securityfocus.com/bid/77027 http://www.securitytracker.com/id/1035094 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 4.9EPSS: 0%CPEs: 3EXPL: 0

The mmfslinux kernel module in IBM General Parallel File System (GPFS) 3.4 before 3.4.0.32, 3.5 before 3.5.0.24, and 4.1 before 4.1.0.7 allows local users to cause a denial of service (memory corruption) via unspecified character-device ioctl calls. El módulo del kernel mmfslinux en IBM General Parallel File System (GPFS) 3.4 anterior a 3.4.0.32, 3.5 anterior a 3.5.0.24, y 4.1 anterior a 4.1.0.7 permite a usuarios locales causar una denegación de servicio (corrupción de memoria) a través de llamadas a ioctl 'character-device' no especificadas. • http://www-01.ibm.com/support/docview.wss?uid=isg3T1022062 http://www-304.ibm.com/support/docview.wss?uid=swg21902662 http://www.securityfocus.com/bid/73283 http://www.securitytracker.com/id/1032880 • CWE-399: Resource Management Errors •

CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0

IBM General Parallel File System (GPFS) 3.4 before 3.4.0.32, 3.5 before 3.5.0.24, and 4.1 before 4.1.0.7 allows local users to obtain root privileges for program execution via unspecified vectors. IBM General Parallel File System (GPFS) 3.4 anterior a 3.4.0.32, 3.5 anterior a 3.5.0.24, y 4.1 anterior a 4.1.0.7 permite a usuarios locales obtener privilegios root para la ejecución de programas a través de vectores no especificados. • http://www-01.ibm.com/support/docview.wss?uid=isg3T1022062 http://www-304.ibm.com/support/docview.wss?uid=swg21902662 http://www.securityfocus.com/bid/73282 http://www.securitytracker.com/id/1032880 • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 0

IBM General Parallel File System (GPFS) 3.4 before 3.4.0.32, 3.5 before 3.5.0.24, and 4.1 before 4.1.0.7 in certain cipherList configurations allows remote attackers to bypass authentication and execute arbitrary programs as root via unspecified vectors. IBM General Parallel File System (GPFS) 3.4 anterior a 3.4.0.32, 3.5 anterior a 3.5.0.24, y 4.1 anterior a 4.1.0.7 en ciertas configuraciones cipherList permite a atacantes remotos evadir la autenticación y ejecutar programas arbitrarios como root a través de vectores no especificados. • http://www-01.ibm.com/support/docview.wss?uid=isg3T1022062 http://www-304.ibm.com/support/docview.wss?uid=swg21902662 http://www.securityfocus.com/bid/73278 http://www.securitytracker.com/id/1032880 • CWE-287: Improper Authentication •

CVSS: 4.0EPSS: 0%CPEs: 42EXPL: 0

IBM General Parallel File System (GPFS) 3.4 through 3.4.0.27 and 3.5 through 3.5.0.16 allows attackers to cause a denial of service (daemon crash) via crafted arguments to a setuid program. IBM General Parallel File System (GPFS) 3.4 hasta 3.4.0.27 y 3.5 hasta 3.5.0.16 permite a atacantes causar una denegación de servicio (caída del demonio) a través de argumentos manipulados hacia un programa con el setuid activado. • http://osvdb.org/102765 http://www-01.ibm.com/support/docview.wss?uid=isg3T1020542 http://www-01.ibm.com/support/docview.wss?uid=swg1IV52863 http://www-01.ibm.com/support/docview.wss?uid=swg1IV54381 http://www.securityfocus.com/bid/65297 https://exchange.xforce.ibmcloud.com/vulnerabilities/90647 • CWE-20: Improper Input Validation •