PT-2019-9519 · Ibm · Ibm San Volume Controller+3
Publicado
2019-02-27
·
Atualizado
2019-10-09
·
CVE-2018-1775
CVSS v3.1
6.5
Média
| Vetor | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products versions 7.5 through 8.2
Description
The issue allows an authenticated user to download arbitrary files from the operating system.
Recommendations
For versions 7.5 through 8.2, update to a version that contains a fix for this issue to prevent authenticated users from downloading arbitrary files.
Correção
Information Disclosure
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Flashsystem
Ibm San Volume Controller
Ibm Spectrum Virtualize
Ibm Storwize