CVE-2018-1431
Last modified
CVE-2018-1431 is a vulnerability of currently unknown severity. A vulnerability in GSKit affects IBM Spectrum Scale 4.1.1, 4.2.0, 4.2.1, 4.2.3, and 5.0.0 that could allow a local attacker to obtain control of the Spectrum Scale daemon and to access and modify files in the Spectrum Scale file system, and possibly to obtain administrator privileges on the node. IBM X-Force ID: 139240.. EPSS estimates a 0.38% chance of exploitation in the next 30 days.
Description
A vulnerability in GSKit affects IBM Spectrum Scale 4.1.1, 4.2.0, 4.2.1, 4.2.3, and 5.0.0 that could allow a local attacker to obtain control of the Spectrum Scale daemon and to access and modify files in the Spectrum Scale file system, and possibly to obtain administrator privileges on the node. IBM X-Force ID: 139240.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Ibm | General Parallel File System | >= 4.1.0.0, <= 4.1.0.8 |
| Ibm | Spectrum Scale | >= 4.1.1.0, <= 4.1.1.19 |
| Ibm | Spectrum Scale | >= 4.2.0.0, <= 4.2.0.4 |
| Ibm | Spectrum Scale | >= 4.2.1.0, <= 4.2.1.2 |
| Ibm | Spectrum Scale | >= 4.2.2.0, <= 4.2.2.3 |
| Ibm | Spectrum Scale | >= 4.2.3.0, <= 4.2.3.8 |
| Ibm | Spectrum Scale | >= 5.0.0.0, <= 5.0.0.2 |
References
- http://www.ibm.com/support/docview.wss?uid=ssg1S1012049Vendor Advisory
- http://www.securityfocus.com/bid/105546Third Party Advisory, VDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/139240VDB Entry, Vendor Advisory
- http://www.ibm.com/support/docview.wss?uid=ssg1S1012049Vendor Advisory
- http://www.securityfocus.com/bid/105546Third Party Advisory, VDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/139240VDB Entry, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2018-1431?
How severe is CVE-2018-1431?
How do I fix CVE-2018-1431?
Are you affected by CVE-2018-1431?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST