CVE-2020-4412

Name of the Vulnerable Software and Affected Versions Spectrum Scale versions 4.2.0.0 through 4.2.3.21 Spectrum Scale versions 5.0.0.0 through 5.0.4.3

Description The file system component is affected by a denial of service security issue. An attacker can force the Spectrum Scale mmfsd/mmsdrserv daemons to unexpectedly exit, impacting the functionality of the Spectrum Scale cluster and the availability of file systems managed by Spectrum Scale.

Recommendations For versions 4.2.0.0 through 4.2.3.21, consider disabling the mmfsd/mmsdrserv daemons as a temporary workaround until a patch is available. For versions 5.0.0.0 through 5.0.4.3, restrict access to the file system component to minimize the risk of exploitation.