CVE-2020-4756

State: PUBLISHED · Published: 2020-10-20 · Updated: 2024-09-16 · Assigner: ibm

Description

IBM Spectrum Scale V4.2.0.0 through V4.2.3.23 and V5.0.0.0 through V5.0.5.2 as well as IBM Elastic Storage System 6.0.0 through 6.0.1.0 could allow a local attacker to invoke a subset of ioctls on the device with invalid arguments that could crash the keneral and cause a denial of service. IBM X-Force ID: 188599.

CWE

(none)

Affected

IBM / Elastic Storage Server — v=6.0.0 [affected]; v=6.0.1.0 [affected]
IBM / Spectrum Scale — v=4.2.0.0 [affected]; v=5.0.0.0 [affected]; v=4.2.3.23 [affected]; v=5.0.5.2 [affected]

CVSS

3.0 score=6.2 severity=MEDIUM CVSS:3.0/A:H/C:N/PR:N/UI:N/S:U/I:N/AC:L/AV:L/RL:O/RC:C/E:U

References

https://www.ibm.com/support/pages/node/6349469 x_refsource_CONFIRM
https://www.ibm.com/support/pages/node/6349475 x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/188599 vdb-entry, x_refsource_XF

Source

cvelistV5-main/cves/2020/4xxx/CVE-2020-4756.json