IBM Spectrum Scale/Elastic Storage System invalid denial of service

entryeditHistoryDiffjsonxmlCTI

A vulnerability has been found in IBM Spectrum Scale and Elastic Storage System (Network Attached Storage Software) (the affected version is unknown) and classified as critical. This vulnerability affects an unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Field11/20/2020 08:19 AM11/21/2020 10:14 PM11/21/2020 10:18 PM
vendorIBMIBMIBM
nameSpectrum Scale/Elastic Storage SystemSpectrum Scale/Elastic Storage SystemSpectrum Scale/Elastic Storage System
argumentinvalidinvalidinvalid
cwe404404404
cvss3_vuldb_avLLL
cvss3_vuldb_acLLL
cvss3_vuldb_prLLL
cvss3_vuldb_uiNNN
cvss3_vuldb_sUUU
cvss3_vuldb_cNNN
cvss3_vuldb_iNNN
cvss3_vuldb_aHHH
cvss3_vuldb_rcCCC
urlhttps://www.ibm.com/support/pages/node/6349469https://www.ibm.com/support/pages/node/6349469https://www.ibm.com/support/pages/node/6349469
cveCVE-2020-4756CVE-2020-4756CVE-2020-4756
xforce188599188599188599
date160314480016031448001603144800
typeNetwork Attached Storage SoftwareNetwork Attached Storage SoftwareNetwork Attached Storage Software
cvss2_vuldb_avLLL
cvss2_vuldb_acLLL
cvss2_vuldb_ciNNN
cvss2_vuldb_iiNNN
cvss2_vuldb_aiCCC
cvss2_vuldb_auSSS
cvss2_vuldb_eNDNDND
cvss2_vuldb_rlNDNDND
cvss2_vuldb_rcNDNDND
cvss3_vuldb_eXXX
cvss3_vuldb_rlXXX
cvss2_vuldb_basescore4.64.64.6
cvss2_vuldb_tempscore4.64.64.6
cvss3_vuldb_basescore5.55.55.5
cvss3_vuldb_tempscore5.55.55.5
cvss3_meta_basescore5.55.55.5
cvss3_meta_tempscore5.55.55.5
price_0day$0-$5k$0-$5k$0-$5k
price_trend+++
cvss2_nvd_basescore4.94.94.9
cvss3_nvd_basescore5.55.55.5
cve_assigned15776604001577660400
cve_nvd_summaryIBM Spectrum Scale V4.2.0.0 through V4.2.3.23 and V5.0.0.0 through V5.0.5.2 as well as IBM Elastic Storage System 6.0.0 through 6.0.1.0 could allow a local attacker to invoke a subset of ioctls on the device with invalid arguments that could crash the keneral and cause a denial of service. IBM X-Force ID: 188599.IBM Spectrum Scale V4.2.0.0 through V4.2.3.23 and V5.0.0.0 through V5.0.5.2 as well as IBM Elastic Storage System 6.0.0 through 6.0.1.0 could allow a local attacker to invoke a subset of ioctls on the device with invalid arguments that could crash the keneral and cause a denial of service. IBM X-Force ID: 188599.
confirm_urlhttps://www.ibm.com/support/pages/node/6349469https://www.ibm.com/support/pages/node/6349469
cvss3_nvd_avL
cvss3_nvd_acL
cvss3_nvd_prL
cvss3_nvd_uiN
cvss3_nvd_sU
cvss3_nvd_cN
cvss3_nvd_iN
cvss3_nvd_aH
cvss2_nvd_avL
cvss2_nvd_acL
cvss2_nvd_auN
cvss2_nvd_ciN
cvss2_nvd_iiN
cvss2_nvd_aiC
cve_cnaIBM Corporation

Want to stay up to date on a daily basis?

Enable the mail alert feature now!