Vulnerabilities > IBM > Flashsystem V9000 Firmware

DATE CVE VULNERABILITY TITLE RISK
2020-08-17 CVE-2020-4686 Unspecified vulnerability in IBM products
IBM Spectrum Virtualize 8.3.1 could allow a remote user authenticated via LDAP to escalate their privileges and perform actions they should not have access to.
network
low complexity
ibm
8.1
8.1
2017-11-13 CVE-2017-1710 Unspecified vulnerability in IBM products
A vulnerability in the Service Assistant GUI in IBM Storwize V7000 (2076) 8.1 could allow a remote attacker to perform a privilege escalation.
network
low complexity
ibm
critical
 9.8
9.8
2016-03-12 CVE-2015-7446 Cross-Site Request Forgery (CSRF) vulnerability in IBM Flashsystem V9000 Firmware 7.4/7.5/7.6
Cross-site request forgery (CSRF) vulnerability in IBM Flash System V9000 7.4 before 7.4.1.4, 7.5 before 7.5.1.3, and 7.6 before 7.6.0.4 allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences.
network
low complexity
ibm CWE-352
8.8
8.8