PT-2022-10806 · Ibm · Ibm System Storage Ds8000 Management Console

Published

2022-04-11

Updated

2022-04-15

CVE-2021-38929

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM System Storage DS8000 Management Console (HMC) versions 88.5x.x.x through 89.2x.0.0

Description The issue allows a remote attacker to obtain sensitive information through unpublished URLs.

Recommendations For versions 88.5x.x.x through 89.2x.0.0, update to a version that fixes the issue of allowing remote attackers to obtain sensitive information through unpublished URLs.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-38929

Affected Products

Ibm System Storage Ds8000 Management Console

PT-2022-10806 · Ibm · Ibm System Storage Ds8000 Management Console

CVE-2021-38929

Related Identifiers

Affected Products

References · 5