PT-2015-2600 · Ibm · Ibm Spectrum Scale+1

Publicado

2015-10-26

·

Atualizado

2016-12-06

·

CVE-2015-4981

CVSS v2.0

2.1

Baixa

VetorAV:L/AC:L/Au:N/C:P/I:N/A:N
Name of the Vulnerable Software and Affected Versions IBM General Parallel File System (GPFS) versions 3.5.x through 3.5.0.26 IBM General Parallel File System (GPFS) versions 4.1.x through 4.1.1.1 IBM Spectrum Scale versions 4.1.1.x through 4.1.1.1
Description The issue is related to the lack of protection for service data in IBM Spectrum Scale and General Parallel File System, allowing local users to obtain sensitive information from system memory.
Recommendations For IBM General Parallel File System (GPFS) versions 3.5.x through 3.5.0.26, update to version 3.5.0.27 or later. For IBM General Parallel File System (GPFS) versions 4.1.x through 4.1.1.1, update to version 4.1.1.2 or later. For IBM Spectrum Scale versions 4.1.1.x through 4.1.1.1, update to version 4.1.1.2 or later.

Correção

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

BDU:2015-11965
CVE-2015-4981

Produtos afetados

Ibm General Parallel File System
Ibm Spectrum Scale