Vulnerabilities > IBM > Spectrum Scale > High

DATE CVE VULNERABILITY TITLE RISK
2023-12-14 CVE-2022-43843 Unspecified vulnerability in IBM Spectrum Scale 5.1.5.0/5.1.5.1
IBM Spectrum Scale 5.1.5.0 through 5.1.5.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
low complexity
ibm
7.5
2023-03-15 CVE-2020-4927 Unspecified vulnerability in IBM Spectrum Scale
A vulnerability in the Spectrum Scale 5.0.5.0 through 5.1.6.1 core component could allow unauthorized access to user data or injection of arbitrary data in the communication protocol.
network
low complexity
ibm
8.2
2022-05-03 CVE-2022-22368 Inadequate Encryption Strength vulnerability in IBM Spectrum Scale
IBM Spectrum Scale 5.1.0 through 5.1.3.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
low complexity
ibm CWE-326
7.5
2021-06-01 CVE-2021-29740 Use of Externally-Controlled Format String vulnerability in IBM Spectrum Scale
IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.3 system core component is affected by a format string security vulnerability.
local
low complexity
ibm CWE-134
7.8
2021-04-27 CVE-2021-29667 Improper Neutralization of Formula Elements in a CSV File vulnerability in IBM Spectrum Scale
IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.2 is potentially vulnerable to CSV Injection.
local
low complexity
ibm CWE-1236
7.8
2020-05-27 CVE-2020-4379 Use of a Broken or Risky Cryptographic Algorithm vulnerability in IBM Spectrum Scale
IBM Spectrum Scale 5.0.0.0 through 5.0.4.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
low complexity
ibm CWE-327
7.5
2020-05-27 CVE-2020-4350 Use of a Broken or Risky Cryptographic Algorithm vulnerability in IBM Spectrum Scale
IBM Spectrum Scale 5.0.0.0 through 5.0.4.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
low complexity
ibm CWE-327
7.5
2020-05-27 CVE-2020-4349 Use of a Broken or Risky Cryptographic Algorithm vulnerability in IBM Spectrum Scale
IBM Spectrum Scale 5.0.0.0 through 5.0.4.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
low complexity
ibm CWE-327
7.5
2020-05-19 CVE-2020-4411 Improper Input Validation vulnerability in IBM Spectrum Scale
The Spectrum Scale 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.3 file system component is affected by a denial of service vulnerability in its kernel module that could allow an attacker to cause a denial of service condition on the affected system.
local
low complexity
ibm CWE-20
7.1
2020-04-03 CVE-2020-4273 Unspecified vulnerability in IBM Spectrum Scale
IBM Spectrum Scale 4.2 and 5.0 could allow a local unprivileged attacker with intimate knowledge of the enviornment to execute commands as root using specially crafted input.
local
low complexity
ibm
7.8