Description
IBM Spectrum Scale 4.1.1.0, 4.1.1.20, 4.2.0.0, 4.2.3.10, 5.0.0 and 5.0.1.2 could allow an unprivileged, authenticated user with access to a GPFS node to read arbitrary files available on this node. IBM X-Force ID: 147373.
CVSS breakdown
CVSS 3.0
Availability
None
Attack Complexity
Low
Attack Vector
Local
Confidentiality
High
Integrity
None
Privileges Required
None
Scope
Unchanged
User Interaction
None
E
Unchanged
RC
Changed
RL
O
Affected products
- ibm / Spectrum Scale5.0.0 – 5.0.0
- ibm / Spectrum Scale5.0.1.2 – 5.0.1.2
- ibm / Spectrum Scale4.2.0.0 – 4.2.0.0
- ibm / Spectrum Scale4.2.3.10 – 4.2.3.10
- ibm / Spectrum Scale4.1.1.0 – 4.1.1.0
- ibm / Spectrum Scale4.1.1.20 – 4.1.1.20