CVE-2018-1782

Description

IBM GPFS (IBM Spectrum Scale 5.0.1.0 and 5.0.1.1) allows a local, unprivileged user to cause a kernel panic on a node running GPFS by accessing a file that is stored on a GPFS file system with mmap, or by executing a crafted file stored on a GPFS file system. IBM X-Force ID: 148805.

CVSS breakdown

CVSS 3.0

Availability

High

Attack Complexity

Low

Attack Vector

Local

Confidentiality

None

Integrity

None

Privileges Required

Low

Scope

Changed

User Interaction

None

Unchanged

Changed

Affected products

ibm / Spectrum Scale5.0.1.0 – 5.0.1.0
ibm / Spectrum Scale5.0.1.1 – 5.0.1.1

References

MISChttps://www.ibm.com/support/docview.wss?uid=ibm10730967
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/148805