← Back

CVE-2022-43869

nvd nist
Published: Feb 12, 2023Modified: Nov 21, 2024

JSON object

Loading...
6.5
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Exploitability: 2.8 / Impact: 3.6
Source: NVD

Description

IBM Spectrum Scale (5.1.0.0 through 5.1.2.8 and 5.1.3.0 through 5.1.5.1) and IBM Elastic Storage System (6.1.0.0 through 6.1.2.4 and 6.1.3.0 through 6.1.4.1) could allow an authenticated user to cause a denial of service through the GUI using a format string attack. IBM X-Force ID: 239539.

Affected (4)

Ibm
2 products
Elastic Storage System
Spectrum Scale
Configuration A
4 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ibm
Elastic Storage System
From 6.1.0.0 to 6.1.2.4
Elastic Storage System
From 6.1.3.0 to 6.1.4.1
Ibm
Spectrum Scale
From 5.1.0.0 to 5.1.2.8
Spectrum Scale
From 5.1.3.0 to 5.1.5.1
Running on/withPlatform Versions
Linux
Linux Kernel
All versions

Related CWEs

CWE-134
Use of Externally-Controlled Format String
The product uses a function that accepts a format string as an argument, but the format string originates from an external source.

References (6)

Source: psirt@us.ibm.com
VDB EntryVendor Advisory
Source: psirt@us.ibm.com
PatchVendor Advisory
Source: psirt@us.ibm.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
VDB EntryVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.