CVE-2015-4974
https://notcve.org/view.php?id=CVE-2015-4974
IBM General Parallel File System (GPFS) 3.5.x before 3.5.0.27 and 4.1.x before 4.1.1.2 and Spectrum Scale 4.1.1.x before 4.1.1.2 allow local users to obtain root privileges for command execution via unspecified vectors. IBM General Parallel File System (GPFS) 3.5.x en versiones anteriores a 3.5.0.27 y 4.1.x en versiones anteriores a 4.1.1.2 y Spectrum Scale 4.1.1.x en versiones anteriores a 4.1.1.2 permite a usuarios locales obtener privilegios de root para ejecución de comandos a través de vectores no especificados. • http://www-01.ibm.com/support/docview.wss?uid=ssg1S1005366 http://www-01.ibm.com/support/docview.wss?uid=swg21972152 http://www.securityfocus.com/bid/77025 http://www.securitytracker.com/id/1035094 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVE-2015-4981
https://notcve.org/view.php?id=CVE-2015-4981
IBM General Parallel File System (GPFS) 3.5.x before 3.5.0.27 and 4.1.x before 4.1.1.2 and Spectrum Scale 4.1.1.x before 4.1.1.2 allow local users to obtain sensitive information from system memory via unspecified vectors. IBM General Parallel File System (GPFS) 3.5.x en versiones anteriores a 3.5.0.27 y 4.1.x en versiones anteriores a 4.1.1.2 y Spectrum Scale 4.1.1.x en versiones anteriores a 4.1.1.2 permite a usuarios locales obtener información sensible desde la memoria del sistema a través de vectores no especificados. • http://www-01.ibm.com/support/docview.wss?uid=ssg1S1005366 http://www-01.ibm.com/support/docview.wss?uid=swg21972152 http://www.securityfocus.com/bid/77027 http://www.securitytracker.com/id/1035094 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •