← Back

CVE-2021-29873

nvd nist
Published: Oct 21, 2021Modified: Nov 21, 2024

JSON object

Loading...
8.1
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Exploitability: 2.8 / Impact: 5.2
Source: NVD

Description

IBM Flash System 900 could allow an authenticated attacker to obtain sensitive information and cause a denial of service due to a restricted shell escape vulnerability. IBM X-Force ID: 206229.

Affected (10)

Ibm
10 products
San Volume Controller Firmware
Spectrum Virtualize
Spectrum Virtualize For Public Cloud
Storwize V3500 Software
Storwize V3700 Software
Storwize V5000 Software
Storwize V5100 Software
Storwize V7000 Software
Flashsystem 9100 Firmware
Flashsystem 9000 Firmware
Configuration A
8 vulnerable
Vulnerable SoftwareAffected Versions
San Volume Controller Firmware
From 7.8.0.0 to 8.4.0.0
Spectrum Virtualize
From 7.8.0.0 to 8.4.0.0
Spectrum Virtualize For Public Cloud
From 7.8.0.0 to 8.4.0.0
Storwize V3500 Software
From 7.8.0.0 to 8.4.0.0
Storwize V3700 Software
From 7.8.0.0 to 8.4.0.0
Storwize V5000 Software
From 7.8.0.0 to 8.4.0.0
Storwize V5100 Software
From 7.8.0.0 to 8.4.0.0
Storwize V7000 Software
From 7.8.0.0 to 8.4.0.0
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Flashsystem 9100 Firmware
From 7.8.0.0 to 8.4.0.0
Running on/withPlatform Versions
Ibm
Flashsystem 9100
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Flashsystem 9000 Firmware
From 7.8.0.0 to 8.4.0.0
Running on/withPlatform Versions
Ibm
Flashsystem 9000
All versions

References (6)

Source: psirt@us.ibm.com
VDB EntryVendor Advisory
Source: psirt@us.ibm.com
PatchVendor Advisory
Source: psirt@us.ibm.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
VDB EntryVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.