CVE-2016-0361

Name of the Vulnerable Software and Affected Versions IBM General Parallel File System (GPFS) versions 3.5 before 3.5.0.29 efix 6 IBM General Parallel File System (GPFS) versions 4.1.1 before 4.1.1.4 efix 9

Description The issue allows remote authenticated users to obtain sensitive information via unspecified vectors, as demonstrated by discovering ADMIN passwords, when the Spectrum Scale GUI is used with DB2 on Linux, UNIX, and Windows.

Recommendations For IBM General Parallel File System (GPFS) versions 3.5 before 3.5.0.29 efix 6, update to version 3.5.0.29 efix 6 or later. For IBM General Parallel File System (GPFS) versions 4.1.1 before 4.1.1.4 efix 9, update to version 4.1.1.4 efix 9 or later.