Vulnerabilities > IBM > Spectrum Scale > 5.0.1.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-05-19 | CVE-2020-4412 | Unspecified vulnerability in IBM Spectrum Scale The Spectrum Scale 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.3 file system component is affected by a denial of service security vulnerability. | 5.0 |
| 2020-05-19 | CVE-2020-4411 | Improper Input Validation vulnerability in IBM Spectrum Scale The Spectrum Scale 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.3 file system component is affected by a denial of service vulnerability in its kernel module that could allow an attacker to cause a denial of service condition on the affected system. | 4.9 |
| 2020-04-03 | CVE-2020-4273 | Improper Privilege Management vulnerability in IBM Spectrum Scale IBM Spectrum Scale 4.2 and 5.0 could allow a local unprivileged attacker with intimate knowledge of the enviornment to execute commands as root using specially crafted input. | 6.9 |
| 2020-03-09 | CVE-2020-4217 | Improper Check for Unusual or Exceptional Conditions vulnerability in IBM Spectrum Scale The IBM Spectrum Scale 4.2 and 5.0 file system component is affected by a denial of service security vulnerability. | 5.0 |
| 2019-12-11 | CVE-2019-4715 | Improper Input Validation vulnerability in IBM Spectrum Scale IBM Spectrum Scale 4.2 and 5.0 could allow a remote authenticated attacker to execute arbitrary commands on the system. | 9.0 |
| 2019-12-11 | CVE-2019-4665 | Cross-site Scripting vulnerability in IBM Spectrum Scale IBM Spectrum Scale 4.2 and 5.0 is vulnerable to cross-site scripting. | 3.5 |
| 2019-10-09 | CVE-2019-4558 | Injection vulnerability in IBM Spectrum Scale A security vulnerability has been identified in all levels of IBM Spectrum Scale V5.0.0.0 through V5.0.3.2 and IBM Spectrum Scale V4.2.0.0 through V4.2.3.17 that could allow a local attacker to obtain root privilege by injecting parameters into setuid files. | 7.2 |
| 2019-05-13 | CVE-2019-4259 | Unspecified vulnerability in IBM Spectrum Scale A security vulnerability has been identified in IBM Spectrum Scale 4.1.1, 4.2.0, 4.2.1, 4.2.2, 4.2.3, and 5.0.0 with CES stack enabled that could allow sensitive data to be included with service snaps. | 5.5 |
| 2019-01-08 | CVE-2018-1993 | Information Exposure vulnerability in IBM Spectrum Scale IBM Spectrum Scale (GPFS) 4.1.1, 4.2.0, 4.2.1, 4.2.2, 4.2.3, and 5.0.0 where the use of Local Read Only Cache (LROC) is enabled may caused read operation on a file to return data from a different file. | 2.1 |
| 2018-10-05 | CVE-2018-1783 | Unspecified vulnerability in IBM Spectrum Scale IBM GPFS (IBM Spectrum Scale 4.1.1.0, 4.1.1.20, 4.2.0.0, 4.2.3.10, 5.0.0 and 5.0.1.2) command line utility allows an unprivileged, authenticated user with access to a GPFS node to forcefully terminate GPFS and deny access to data available through GPFS. | 2.1 |