Vulnerability Description
A vulnerability in GSKit affects IBM Spectrum Scale 4.1.1, 4.2.0, 4.2.1, 4.2.3, and 5.0.0 that could allow a local attacker to obtain control of the Spectrum Scale daemon and to access and modify files in the Spectrum Scale file system, and possibly to obtain administrator privileges on the node. IBM X-Force ID: 139240.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | General Parallel File System | >= 4.1.0.0, <= 4.1.0.8 |
| Ibm | Spectrum Scale | >= 4.1.1.0, <= 4.1.1.19 |
References
- http://www.ibm.com/support/docview.wss?uid=ssg1S1012049Vendor Advisory
- http://www.securityfocus.com/bid/105546Third Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/139240VDB EntryVendor Advisory
- http://www.ibm.com/support/docview.wss?uid=ssg1S1012049Vendor Advisory
- http://www.securityfocus.com/bid/105546Third Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/139240VDB EntryVendor Advisory
FAQ
What is CVE-2018-1431?
CVE-2018-1431 is a vulnerability with a CVSS score of 7.4 (HIGH). A vulnerability in GSKit affects IBM Spectrum Scale 4.1.1, 4.2.0, 4.2.1, 4.2.3, and 5.0.0 that could allow a local attacker to obtain control of the Spectrum Scale daemon and to access and modify file...
How severe is CVE-2018-1431?
CVE-2018-1431 has been rated HIGH with a CVSS base score of 7.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-1431?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm General Parallel File System, Ibm Spectrum Scale.