// For flags

CVE-2021-29873

 

Severity Score

8.1
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

IBM Flash System 900 could allow an authenticated attacker to obtain sensitive information and cause a denial of service due to a restricted shell escape vulnerability. IBM X-Force ID: 206229.

IBM Flash System 900 podría permitir a un atacante autenticado conseguir información confidencial y causar una denegación de servicio debido a una vulnerabilidad de escape de shell restringido. IBM X-Force ID: 206229

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
High
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Network
Attack Complexity
Low
Authentication
Single
Confidentiality
Partial
Integrity
None
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2021-03-31 CVE Reserved
  • 2021-10-21 CVE Published
  • 2023-06-12 EPSS Updated
  • 2024-09-16 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Ibm
Search vendor "Ibm"
Flashsystem 9100 Firmware
Search vendor "Ibm" for product "Flashsystem 9100 Firmware"
>= 7.8.0.0 < 8.4.0.0
Search vendor "Ibm" for product "Flashsystem 9100 Firmware" and version " >= 7.8.0.0 < 8.4.0.0"
-
Affected
in Ibm
Search vendor "Ibm"
Flashsystem 9100
Search vendor "Ibm" for product "Flashsystem 9100"
--
Safe
Ibm
Search vendor "Ibm"
Flashsystem 9000 Firmware
Search vendor "Ibm" for product "Flashsystem 9000 Firmware"
>= 7.8.0.0 < 8.4.0.0
Search vendor "Ibm" for product "Flashsystem 9000 Firmware" and version " >= 7.8.0.0 < 8.4.0.0"
-
Affected
in Ibm
Search vendor "Ibm"
Flashsystem 9000
Search vendor "Ibm" for product "Flashsystem 9000"
--
Safe
Ibm
Search vendor "Ibm"
Spectrum Virtualize
Search vendor "Ibm" for product "Spectrum Virtualize"
>= 7.8.0.0 < 8.4.0.0
Search vendor "Ibm" for product "Spectrum Virtualize" and version " >= 7.8.0.0 < 8.4.0.0"
-
Affected
Ibm
Search vendor "Ibm"
Spectrum Virtualize For Public Cloud
Search vendor "Ibm" for product "Spectrum Virtualize For Public Cloud"
>= 7.8.0.0 < 8.4.0.0
Search vendor "Ibm" for product "Spectrum Virtualize For Public Cloud" and version " >= 7.8.0.0 < 8.4.0.0"
-
Affected
Ibm
Search vendor "Ibm"
Storwize V3500 Software
Search vendor "Ibm" for product "Storwize V3500 Software"
>= 7.8.0.0 < 8.4.0.0
Search vendor "Ibm" for product "Storwize V3500 Software" and version " >= 7.8.0.0 < 8.4.0.0"
-
Affected
Ibm
Search vendor "Ibm"
Storwize V3700 Software
Search vendor "Ibm" for product "Storwize V3700 Software"
>= 7.8.0.0 < 8.4.0.0
Search vendor "Ibm" for product "Storwize V3700 Software" and version " >= 7.8.0.0 < 8.4.0.0"
-
Affected
Ibm
Search vendor "Ibm"
Storwize V5000 Software
Search vendor "Ibm" for product "Storwize V5000 Software"
>= 7.8.0.0 < 8.4.0.0
Search vendor "Ibm" for product "Storwize V5000 Software" and version " >= 7.8.0.0 < 8.4.0.0"
-
Affected
Ibm
Search vendor "Ibm"
Storwize V5100 Software
Search vendor "Ibm" for product "Storwize V5100 Software"
>= 7.8.0.0 < 8.4.0.0
Search vendor "Ibm" for product "Storwize V5100 Software" and version " >= 7.8.0.0 < 8.4.0.0"
-
Affected
Ibm
Search vendor "Ibm"
Storwize V7000 Software
Search vendor "Ibm" for product "Storwize V7000 Software"
>= 7.8.0.0 < 8.4.0.0
Search vendor "Ibm" for product "Storwize V7000 Software" and version " >= 7.8.0.0 < 8.4.0.0"
-
Affected
Ibm
Search vendor "Ibm"
San Volume Controller Firmware
Search vendor "Ibm" for product "San Volume Controller Firmware"
>= 7.8.0.0 < 8.4.0.0
Search vendor "Ibm" for product "San Volume Controller Firmware" and version " >= 7.8.0.0 < 8.4.0.0"
-
Affected