Vulnerabilities > IBM > SAN Volume Controller Software > 6.4.0.4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-09-12 | CVE-2014-4811 | Credentials Management vulnerability in IBM products IBM Storwize 3500, 3700, 5000, and 7000 devices and SAN Volume Controller 6.x and 7.x before 7.2.0.8 allow remote attackers to reset the administrator superuser password to its default value via a direct request to the administrative IP address. | 7.5 |
| 2014-03-29 | CVE-2014-0880 | Denial-Of-Service vulnerability in San Volume Controller Software IBM SAN Volume Controller; Storwize V3500, V3700, V5000, and V7000; and Flex System V7000 with software 6.3 and 6.4 before 6.4.1.8, and 7.1 and 7.2 before 7.2.0.3, allow remote attackers to obtain CLI access, and consequently cause a denial of service, via unspecified traffic to the administrative IP address. | 7.5 |