Description
IBM Spectrum Scale V4.2.0.0 through V4.2.3.23 and V5.0.0.0 through V5.0.5.2 as well as IBM Elastic Storage System 6.0.0 through 6.0.1.0 could allow a local attacker to invoke a subset of ioctls on the device with invalid arguments that could crash the keneral and cause a denial of service. IBM X-Force ID: 188599.
CVSS breakdown
CVSS 3.0
Availability
High
Confidentiality
None
Privileges Required
None
User Interaction
None
Scope
Unchanged
Integrity
None
Attack Complexity
Low
Attack Vector
Local
RL
O
RC
Changed
E
Unchanged
Affected products
- ibm / Elastic Storage Server6.0.0 – 6.0.0
- ibm / Elastic Storage Server6.0.1.0 – 6.0.1.0
- ibm / Spectrum Scale4.2.0.0 – 4.2.0.0
- ibm / Spectrum Scale5.0.0.0 – 5.0.0.0
- ibm / Spectrum Scale4.2.3.23 – 4.2.3.23
- ibm / Spectrum Scale5.0.5.2 – 5.0.5.2