CVE-2012-6354
IBM SAN Volume Controller and Storwize V7000 < 6.4.1.3 - Unauthenticated Authentication Bypass
Title source: llmDescription
The management GUI on the IBM SAN Volume Controller and Storwize V7000 6.x before 6.4.1.3 allows remote attackers to bypass authentication and obtain superuser access via IP packets.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004277
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/80716
Scores
EPSS
0.0204
EPSS Percentile
78.8%
Details
CWE
CWE-287
Status
published
Products (5)
ibm/san_volume_controller_software
6.1.0.0
ibm/san_volume_controller_software
6.2.0.0
ibm/san_volume_controller_software
6.3.0.0
ibm/san_volume_controller_software
6.4.0.0
ibm/storwize_v7000
Published
Feb 19, 2013
Tracked Since
Feb 18, 2026