CVE-2018-1993

MEDIUM

IBM Spectrum Scale <5.0.0 - Info Disclosure

Title source: llm
STIX 2.1

Description

IBM Spectrum Scale (GPFS) 4.1.1, 4.2.0, 4.2.1, 4.2.2, 4.2.3, and 5.0.0 where the use of Local Read Only Cache (LROC) is enabled may caused read operation on a file to return data from a different file. IBM X-Force ID: 154440.

References (3)

Core 3
Core References
VDB Entry, Vendor Advisory vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/154440
Patch, Vendor Advisory x_refsource_confirm
https://www.ibm.com/support/docview.wss?uid=ibm10793719
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/106485

Scores

CVSS v3 4.0
EPSS 0.0039
EPSS Percentile 30.9%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Details

CWE
CWE-200
Status published
Products (1)
ibm/spectrum_scale 4.1.1.0 - 4.1.1.21
Published Jan 08, 2019
Tracked Since Feb 18, 2026