CVE-2020-5015

HIGH7.5

Description

IBM Elastic Storage System 6.0.0 through 6.0.1.2 and IBM Elastic Storage Server 5.3.0 through 5.3.6.2 could allow a remote attacker to cause a denial of service by sending malformed UDP requests. IBM X-Force ID: 193486.

CVSS breakdown

CVSS 3.0

Attack Vector

Network

Scope

Unchanged

Attack Complexity

Low

Confidentiality

None

Availability

High

User Interaction

None

Integrity

None

Privileges Required

None

Unchanged

Changed

Affected products

ibm / Elastic Storage Server5.3.0 – 5.3.0
ibm / Elastic Storage Server6.0.0 – 6.0.0
ibm / Elastic Storage Server6.0.1.2 – 6.0.1.2
ibm / Elastic Storage Server5.3.6.2 – 5.3.6.2

References

MISChttps://www.ibm.com/support/pages/node/6434155
MISChttps://www.ibm.com/support/pages/node/6434737
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/193486