Vulnerabilities > IBM > Flashsystem 840 Firmware > 1.4

DATE	CVE	VULNERABILITY TITLE	RISK
2018-10-18	CVE-2018-1822	Improper Authentication vulnerability in IBM Flashsystem 840 Firmware and Flashsystem 900 Firmware IBM FlashSystem 900 product GUI allows a specially crafted attack to bypass the authentication requirements of the system, resulting in the ability to remotely change the superuser password. network low complexity ibm CWE-287 critical	10.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.