Vulnerabilities > IBM > Spectrum Scale > 5.0.5.7

DATE CVE VULNERABILITY TITLE RISK
2023-03-15 CVE-2020-4927 Unspecified vulnerability in IBM Spectrum Scale
A vulnerability in the Spectrum Scale 5.0.5.0 through 5.1.6.1 core component could allow unauthorized access to user data or injection of arbitrary data in the communication protocol.
network
low complexity
ibm
8.2
8.2
2022-12-19 CVE-2022-40607 Path Traversal vulnerability in IBM Spectrum Scale
IBM Spectrum Scale 5.1 could allow users with permissions to create pod, persistent volume and persistent volume claim to access files and directories outside of the volume, including on the host filesystem.
network
low complexity
ibm CWE-22
6.8
6.8
2022-05-24 CVE-2020-4926 Missing Authorization vulnerability in IBM Elastic Storage System and Spectrum Scale
A vulnerability in the Spectrum Scale 5.1 core component and IBM Elastic Storage System 6.1 could allow unauthorized access to user data or injection of arbitrary data in the communication protocol.
network
low complexity
ibm CWE-862
6.4
6.4
2021-04-27 CVE-2020-4981 Improper Input Validation vulnerability in IBM Spectrum Scale
IBM Spectrum Scale 5.0.4.1 through 5.1.0.3 could allow a local privileged user to overwrite files due to improper input validation.
local
low complexity
ibm CWE-20
3.6
3.6