CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 0CVE-2020-5015
https://notcve.org/view.php?id=CVE-2020-5015
24 Mar 2021 — IBM Elastic Storage System 6.0.0 through 6.0.1.2 and IBM Elastic Storage Server 5.3.0 through 5.3.6.2 could allow a remote attacker to cause a denial of service by sending malformed UDP requests. IBM X-Force ID: 193486. IBM Elastic Storage System versiones 6.0.0 hasta 6.0.1.2 e IBM Elastic Storage Server versiones 5.3.0 hasta 5.3.6.2, podrían permitir a un atacante remoto causar una denegación de servicio mediante el envío de peticiones UDP malformadas. IBM X-Force ID: 193486 • https://exchange.xforce.ibmcloud.com/vulnerabilities/193486 •
CVSS: 6.2EPSS: 0%CPEs: 3EXPL: 0CVE-2020-4756
https://notcve.org/view.php?id=CVE-2020-4756
20 Oct 2020 — IBM Spectrum Scale V4.2.0.0 through V4.2.3.23 and V5.0.0.0 through V5.0.5.2 as well as IBM Elastic Storage System 6.0.0 through 6.0.1.0 could allow a local attacker to invoke a subset of ioctls on the device with invalid arguments that could crash the keneral and cause a denial of service. IBM X-Force ID: 188599. IBM Spectrum Scale versiones V4.2.0.0 hasta V4.2.3.23 y versiones V5.0.0.0 hasta V5.0.5.2, así como IBM Elastic Storage System versiones 6.0.0 hasta 6.0.1.0, podrían permitir que un atacante local ... • https://exchange.xforce.ibmcloud.com/vulnerabilities/188599 • CWE-404: Improper Resource Shutdown or Release •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-4383
https://notcve.org/view.php?id=CVE-2020-4383
24 Aug 2020 — IBM Spectrum Scale for IBM Elastic Storage Server 5.3.0 through 5.3.5 could allow an authenticated user to cause a denial of service during deployment while configuring some of the network services. IBM X-Force ID: 179165. IBM Spectrum Scale para IBM Elastic Storage Server versiones 5.3.0 hasta 5.3.5, podría permitir a un usuario autenticado causar una denegación de servicio durante la implementación mientras configuran algunos de los servicios de red. IBM X-Force ID: 179165. • https://exchange.xforce.ibmcloud.com/vulnerabilities/179165 •
CVSS: 6.2EPSS: 0%CPEs: 2EXPL: 0CVE-2020-4382
https://notcve.org/view.php?id=CVE-2020-4382
24 Aug 2020 — IBM Spectrum Scale for IBM Elastic Storage Server 5.3.0 through 5.3.5 could allow an authenticated user to cause a denial of service during deployment or upgrade pertaining to xcat services. IBM X-Force ID: 179163. IBM Spectrum Scale para IBM Elastic Storage Server versiones 5.3.0 hasta 5.3.5, podría permitir a un usuario autenticado causar una denegación de servicio durante la implementación o actualización perteneciente a los servicios xcat. IBM X-Force ID: 179163. • https://exchange.xforce.ibmcloud.com/vulnerabilities/179163 •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-4381
https://notcve.org/view.php?id=CVE-2020-4381
19 Aug 2020 — IBM Spectrum Scale for IBM Elastic Storage Server 5.3.0 through 5.3.6 could allow an authenticated user to cause a denial of service during deployment or upgrade if GUI specific services are enabled. IBM X-Force ID: 179162. IBM Spectrum Scale para IBM Elastic Storage Server versiones 5.3.0 hasta 5.3.6, podría permitir a un usuario autenticado causar una denegación de servicio durante la implementación o actualización si servicios específicos de la GUI están habilitados. IBM X-Force ID: 179162. • https://exchange.xforce.ibmcloud.com/vulnerabilities/179162 •
CVSS: 6.2EPSS: 0%CPEs: 13EXPL: 0CVE-2017-1304
https://notcve.org/view.php?id=CVE-2017-1304
21 Jun 2017 — IBM has identified a vulnerability with IBM Spectrum Scale/GPFS utilized on the Elastic Storage Server (ESS)/GPFS Storage Server (GSS) during testing of an unsupported configuration, where users applications are running on an active ESS I/O server node and utilize direct I/O to perform a read or a write to a Spectrum Scale file. This vulnerability may result in the use of an incorrect memory address, leading to a Spectrum Scale/GPFS daemon failure with a Signal 11, and possibly leading to denial of service ... • http://www.ibm.com/support/docview.wss?uid=ssg1S1010230 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.4EPSS: 0%CPEs: 28EXPL: 0CVE-2016-0392 – IBM GPFS / Spectrum Scale Command Injection
https://notcve.org/view.php?id=CVE-2016-0392
08 Jun 2016 — IBM General Parallel File System (GPFS) in GPFS Storage Server 2.0.0 through 2.0.7 and Elastic Storage Server 2.5.x through 2.5.5, 3.x before 3.5.5, and 4.x before 4.0.3, as distributed in Spectrum Scale RAID, allows local users to gain privileges via a crafted parameter to a setuid program. IBM General Parallel File System (GPFS) en GPFS Storage Server 2.0.0 hasta la versión 2.0.7 y Elastic Storage Server 2.5.x hasta la versión 2.5.5, 3.x en versiones anteriores a 3.5.5 y 4.x en versiones anteriores a 4.0.... • http://packetstormsecurity.com/files/137373/IBM-GPFS-Spectrum-Scale-Command-Injection.html • CWE-284: Improper Access Control •