Description
IBM Spectrum Scale and IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM X-Force ID: 175419.
CVSS breakdown
CVSS 3.0
Availability
High
Attack Vector
Network
Privileges Required
Low
Attack Complexity
Low
Confidentiality
High
User Interaction
None
Integrity
High
Scope
Unchanged
RL
O
RC
Changed
E
Unchanged
Affected products
- ibm / Spectrum Protect Plus10.1.0 – 10.1.0
- ibm / Spectrum Protect Plus10.1.5 – 10.1.5