IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products ( 6.1, 6.2, 6.3, 6.4, 7.1, 7.2, 7.3, 7.4, 7.5, 7.6, 7.6.1, 7.7, 7.7.1, 7.8, 7.8.1, 8.1, and 8.1.1) web handler /DLSnap could allow an unauthenticated attacker to read arbitrary files on the system. IBM X-Force ID: 139566.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NIBM San Volume Controller
HWIbmwszystkie wersjeIBM San Volume Controller Firmware
OSIbm6.1.0.0 – 7.5.0.14 (bez)7.7.0.0 – 7.7.1.9 (bez)7.8.0.0 – 7.8.1.6 (bez)8.1.1.0 – 8.1.1.2 (bez)8.1.2.0 – 8.1.2.1 (bez)IBM Spectrum Virtualize
APPIbm7.8.0.0 – 7.8.1.6 (bez)8.1.2.0 – 8.1.2.1 (bez)8.1.1.0 – 8.1.1.2 (bez)7.7.0.0 – 7.7.1.9 (bez)6.1.0.0 – 7.5.0.14 (bez)IBM Spectrum Virtualize For Public Cloud
APPIbm6.1.0.0 – 7.5.0.14 (bez)7.7.0.0 – 7.7.1.9 (bez)7.8.0.0 – 7.8.1.6 (bez)8.1.1.0 – 8.1.1.2 (bez)8.1.2.0 – 8.1.2.1 (bez)IBM Storwize V3500
HWIbmwszystkie wersjeIBM Storwize V3500 Firmware
OSIbm6.1.0.0 – 7.5.0.14 (bez)7.7.0.0 – 7.7.1.9 (bez)7.8.0.0 – 7.8.1.6 (bez)8.1.1.0 – 8.1.1.2 (bez)8.1.2.0 – 8.1.2.1 (bez)IBM Storwize V3700
HWIbmwszystkie wersjeIBM Storwize V3700 Firmware
OSIbm8.1.2.0 – 8.1.2.1 (bez)6.1.0.0 – 7.5.0.14 (bez)7.7.0.0 – 7.7.1.9 (bez)7.8.0.0 – 7.8.1.6 (bez)8.1.1.0 – 8.1.1.2 (bez)IBM Storwize V5000
HWIbmwszystkie wersjeIBM Storwize V5000 Firmware
OSIbm8.1.2.0 – 8.1.2.1 (bez)8.1.1.0 – 8.1.1.2 (bez)7.8.0.0 – 7.8.1.6 (bez)7.7.0.0 – 7.7.1.9 (bez)6.1.0.0 – 7.5.0.14 (bez)IBM Storwize V7000
HWIbmwszystkie wersjeIBM Storwize V7000 Firmware
OSIbm7.8.0.0 – 7.8.1.6 (bez)6.1.0.0 – 7.5.0.14 (bez)8.1.2.0 – 8.1.2.1 (bez)8.1.1.0 – 8.1.1.2 (bez)7.7.0.0 – 7.7.1.9 (bez)IBM Storwize V9000
HWIbmwszystkie wersjeIBM Storwize V9000 Firmware
OSIbm7.7.0.0 – 7.7.1.9 (bez)6.1.0.0 – 7.5.0.14 (bez)8.1.2.0 – 8.1.2.1 (bez)8.1.1.0 – 8.1.1.2 (bez)7.8.0.0 – 7.8.1.6 (bez)
Related vulnerabilities
The Jakarta Multipart parser in Apache Struts 2 2.3.x before 2.3.32 and 2.5.x before 2.5.10.1 has incorrect ex...
IBM Spectrum Virtualize 8.2, 8.3, and 8.4 could allow an attacker to allow unauthorized access due to the reus...
A vulnerability in the Service Assistant GUI in IBM Storwize V7000 (2076) 8.1 could allow a remote attacker to...
IBM Flash System 900 could allow an authenticated attacker to obtain sensitive information and cause a denial ...
IBM Spectrum Virtualize 8.3.1 could allow a remote user authenticated via LDAP to escalate their privileges an...