CVE-2022-43843 – IBM Spectrum Scale information disclosure
https://notcve.org/view.php?id=CVE-2022-43843
IBM Spectrum Scale 5.1.5.0 through 5.1.5.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 239080. IBM Spectrum Scale 5.1.5.0 a 5.1.5.1 utiliza algoritmos criptográficos más débiles de lo esperado que podrían permitir a un atacante descifrar información altamente confidencial. ID de IBM X-Force: 239080. • https://exchange.xforce.ibmcloud.com/vulnerabilities/239080 https://https://www.ibm.com/support/pages/node/7094941 https://www.ibm.com/support/pages/node/7094941 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVE-2022-43831 – IBM Spectrum Scale privilege escalation
https://notcve.org/view.php?id=CVE-2022-43831
IBM Storage Scale Container Native Storage Access 5.1.2.1 through 5.1.6.1 could allow a local user to obtain escalated privileges on a host without proper security context settings configured. IBM X-Force ID: 238941. IBM Storage Scale Container Native Storage Access de la versión 5.1.2.1 a la versión 5.1.6.1 podría permitir a un usuario local obtener privilegios escalados en un host sin la configuración de contexto de seguridad adecuada. ID de IBM X-Force: 238941. • https://exchange.xforce.ibmcloud.com/vulnerabilities/238941 https://www.ibm.com/support/pages/node/7015067 •
CVE-2023-30434 – IBM Storage Scale denial of service
https://notcve.org/view.php?id=CVE-2023-30434
IBM Storage Scale (IBM Spectrum Scale 5.1.0.0 through 5.1.2.9, 5.1.3.0 through 5.1.6.1 and IBM Elastic Storage Systems 6.1.0.0 through 6.1.2.5, 6.1.3.0 through 6.1.6.0) could allow a local user to cause a kernel panic. IBM X-Force ID: 252187. • https://exchange.xforce.ibmcloud.com/vulnerabilities/252187 https://www.ibm.com/support/pages/node/6988363 https://www.ibm.com/support/pages/node/6988365 • CWE-20: Improper Input Validation •
CVE-2022-41736 – IBM Spectrum Scale Container Native Storage Access privilege escalation
https://notcve.org/view.php?id=CVE-2022-41736
IBM Spectrum Scale Container Native Storage Access 5.1.2.1 through 5.1.6.0 contains an unspecified vulnerability that could allow a local user to obtain root privileges. IBM X-Force ID: 237810. • https://exchange.xforce.ibmcloud.com/vulnerabilities/237810 https://www.ibm.com/support/pages/node/6964564 •
CVE-2022-41739 – IBM Spectrum Scale privilege escalation
https://notcve.org/view.php?id=CVE-2022-41739
IBM Spectrum Scale (IBM Spectrum Scale Container Native Storage Access 5.1.2.1 through 5.1.6.0) could allow programs running inside the container to overcome isolation mechanism and gain additional capabilities or access sensitive information on the host. IBM X-Force ID: 237815. • https://exchange.xforce.ibmcloud.com/vulnerabilities/237815 https://www.ibm.com/support/pages/node/6964568 •