CVSS: 2.1EPSS: 0%CPEs: 28EXPL: 0CVE-2015-4981
https://notcve.org/view.php?id=CVE-2015-4981
IBM General Parallel File System (GPFS) 3.5.x before 3.5.0.27 and 4.1.x before 4.1.1.2 and Spectrum Scale 4.1.1.x before 4.1.1.2 allow local users to obtain sensitive information from system memory via unspecified vectors. IBM General Parallel File System (GPFS) 3.5.x en versiones anteriores a 3.5.0.27 y 4.1.x en versiones anteriores a 4.1.1.2 y Spectrum Scale 4.1.1.x en versiones anteriores a 4.1.1.2 permite a usuarios locales obtener información sensible desde la memoria del sistema a través de vectores no especificados. • http://www-01.ibm.com/support/docview.wss?uid=ssg1S1005366 http://www-01.ibm.com/support/docview.wss?uid=swg21972152 http://www.securityfocus.com/bid/77027 http://www.securitytracker.com/id/1035094 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.9EPSS: 0%CPEs: 3EXPL: 0CVE-2015-0199
https://notcve.org/view.php?id=CVE-2015-0199
The mmfslinux kernel module in IBM General Parallel File System (GPFS) 3.4 before 3.4.0.32, 3.5 before 3.5.0.24, and 4.1 before 4.1.0.7 allows local users to cause a denial of service (memory corruption) via unspecified character-device ioctl calls. El módulo del kernel mmfslinux en IBM General Parallel File System (GPFS) 3.4 anterior a 3.4.0.32, 3.5 anterior a 3.5.0.24, y 4.1 anterior a 4.1.0.7 permite a usuarios locales causar una denegación de servicio (corrupción de memoria) a través de llamadas a ioctl 'character-device' no especificadas. • http://www-01.ibm.com/support/docview.wss?uid=isg3T1022062 http://www-304.ibm.com/support/docview.wss?uid=swg21902662 http://www.securityfocus.com/bid/73283 http://www.securitytracker.com/id/1032880 • CWE-399: Resource Management Errors •
CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0CVE-2015-0197
https://notcve.org/view.php?id=CVE-2015-0197
IBM General Parallel File System (GPFS) 3.4 before 3.4.0.32, 3.5 before 3.5.0.24, and 4.1 before 4.1.0.7 allows local users to obtain root privileges for program execution via unspecified vectors. IBM General Parallel File System (GPFS) 3.4 anterior a 3.4.0.32, 3.5 anterior a 3.5.0.24, y 4.1 anterior a 4.1.0.7 permite a usuarios locales obtener privilegios root para la ejecución de programas a través de vectores no especificados. • http://www-01.ibm.com/support/docview.wss?uid=isg3T1022062 http://www-304.ibm.com/support/docview.wss?uid=swg21902662 http://www.securityfocus.com/bid/73282 http://www.securitytracker.com/id/1032880 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 0CVE-2015-0198
https://notcve.org/view.php?id=CVE-2015-0198
IBM General Parallel File System (GPFS) 3.4 before 3.4.0.32, 3.5 before 3.5.0.24, and 4.1 before 4.1.0.7 in certain cipherList configurations allows remote attackers to bypass authentication and execute arbitrary programs as root via unspecified vectors. IBM General Parallel File System (GPFS) 3.4 anterior a 3.4.0.32, 3.5 anterior a 3.5.0.24, y 4.1 anterior a 4.1.0.7 en ciertas configuraciones cipherList permite a atacantes remotos evadir la autenticación y ejecutar programas arbitrarios como root a través de vectores no especificados. • http://www-01.ibm.com/support/docview.wss?uid=isg3T1022062 http://www-304.ibm.com/support/docview.wss?uid=swg21902662 http://www.securityfocus.com/bid/73278 http://www.securitytracker.com/id/1032880 • CWE-287: Improper Authentication •
CVSS: 4.0EPSS: 0%CPEs: 42EXPL: 0CVE-2014-0834
https://notcve.org/view.php?id=CVE-2014-0834
IBM General Parallel File System (GPFS) 3.4 through 3.4.0.27 and 3.5 through 3.5.0.16 allows attackers to cause a denial of service (daemon crash) via crafted arguments to a setuid program. IBM General Parallel File System (GPFS) 3.4 hasta 3.4.0.27 y 3.5 hasta 3.5.0.16 permite a atacantes causar una denegación de servicio (caída del demonio) a través de argumentos manipulados hacia un programa con el setuid activado. • http://osvdb.org/102765 http://www-01.ibm.com/support/docview.wss?uid=isg3T1020542 http://www-01.ibm.com/support/docview.wss?uid=swg1IV52863 http://www-01.ibm.com/support/docview.wss?uid=swg1IV54381 http://www.securityfocus.com/bid/65297 https://exchange.xforce.ibmcloud.com/vulnerabilities/90647 • CWE-20: Improper Input Validation •