CVE-2022-43869

IBM Spectrum Scale (5.1.0.0 through 5.1.2.8 and 5.1.3.0 through 5.1.5.1) and IBM Elastic Storage System (6.1.0.0 through 6.1.2.4 and 6.1.3.0 through 6.1.4.1) could allow an authenticated user to cause a denial of service through the GUI using a format string attack. IBM X-Force ID: 239539.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:ibm:elastic_storage_system:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:elastic_storage_system:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_scale:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_scale:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

History

21 Nov 2024, 07:27

Type Values Removed Values Added
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/239539 - VDB Entry, Vendor Advisory () https://exchange.xforce.ibmcloud.com/vulnerabilities/239539 - VDB Entry, Vendor Advisory
References () https://www.ibm.com/support/pages/node/6909465 - Patch, Vendor Advisory () https://www.ibm.com/support/pages/node/6909465 - Patch, Vendor Advisory
References () https://www.ibm.com/support/pages/node/6909469 - Patch, Vendor Advisory () https://www.ibm.com/support/pages/node/6909469 - Patch, Vendor Advisory

07 Nov 2023, 03:54

Type Values Removed Values Added
Summary IBM Spectrum Scale (5.1.0.0 through 5.1.2.8 and 5.1.3.0 through 5.1.5.1) and IBM Elastic Storage System (6.1.0.0 through 6.1.2.4 and 6.1.3.0 through 6.1.4.1) could allow an authenticated user to cause a denial of service through the GUI using a format string attack. IBM X-Force ID: 239539. IBM Spectrum Scale (5.1.0.0 through 5.1.2.8 and 5.1.3.0 through 5.1.5.1) and IBM Elastic Storage System (6.1.0.0 through 6.1.2.4 and 6.1.3.0 through 6.1.4.1) could allow an authenticated user to cause a denial of service through the GUI using a format string attack. IBM X-Force ID: 239539.

Information

Published : 2023-02-12 04:15

Updated : 2024-11-21 07:27


NVD link : CVE-2022-43869

Mitre link : CVE-2022-43869

CVE.ORG link : CVE-2022-43869


JSON object : View

Products Affected

linux

  • linux_kernel

ibm

  • elastic_storage_system
  • spectrum_scale
CWE
CWE-134

Use of Externally-Controlled Format String