Vulnerability Description
IBM General Parallel File System (GPFS) 3.4 before 3.4.0.32, 3.5 before 3.5.0.24, and 4.1 before 4.1.0.7 in certain cipherList configurations allows remote attackers to bypass authentication and execute arbitrary programs as root via unspecified vectors.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | General Parallel File System | 3.4 |
Related Weaknesses (CWE)
References
- http://www-01.ibm.com/support/docview.wss?uid=isg3T1022062PatchVendor Advisory
- http://www-304.ibm.com/support/docview.wss?uid=swg21902662
- http://www.securityfocus.com/bid/73278
- http://www.securitytracker.com/id/1032880
- http://www-01.ibm.com/support/docview.wss?uid=isg3T1022062PatchVendor Advisory
- http://www-304.ibm.com/support/docview.wss?uid=swg21902662
- http://www.securityfocus.com/bid/73278
- http://www.securitytracker.com/id/1032880
FAQ
What is CVE-2015-0198?
CVE-2015-0198 is a vulnerability with a CVSS score of 10.0 (HIGH). IBM General Parallel File System (GPFS) 3.4 before 3.4.0.32, 3.5 before 3.5.0.24, and 4.1 before 4.1.0.7 in certain cipherList configurations allows remote attackers to bypass authentication and execu...
How severe is CVE-2015-0198?
CVE-2015-0198 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-0198?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm General Parallel File System.