← back
CVE-2018-1775

CVE-2018-1775

CVSS 6.5 MEDIUMEPSS 1.9%
IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products versions 7.5 through 8.2 could allow an authenticated user to download arbitrary files from the operating system. IBM X-Force ID: 148757.
CVSS:3.0/A:N/AC:L/AV:N/C:H/I:N/PR:L/S:U/UI:N/E:U/RC:C/RL:T
Affected products
IBM · FlashSystem 9100 FamilyIBM · FlashSystem V9000IBM · SAN Volume ControllerIBM · Spectrum Virtualize for Public CloudIBM · Spectrum Virtualize SoftwareIBM · torwize V3500IBM · torwize V3700IBM · torwize V5000IBM · torwize V7000

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/148757https://www.ibm.com/support/docview.wss?uid=ibm10872486http://www.securityfocus.com/bid/107187