CVE-2021-38929
HIGHIBM System Storage DS8000 Management Console - Info Disclosure
Title source: llmDescription
IBM System Storage DS8000 Management Console (HMC) R8.5 88.5x.x.x, R9.1 89.1x.0.0, and R9.2 89.2x.0.0 could allow a remote attacker to obtain sensitive information through unpublished URLs. IBM X-Force ID: 210330.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://www.ibm.com/support/pages/node/6570741
VDB Entry, Vendor Advisory vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/210330
Scores
CVSS v3
7.5
EPSS
0.0023
EPSS Percentile
45.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
Status
published
Products (3)
ibm/system_storage_ds8000_management_console_firmware
88.50.0.0
ibm/system_storage_ds8000_management_console_firmware
89.10.0.0
ibm/system_storage_ds8000_management_console_firmware
89.20.0.0
Published
Apr 11, 2022
Tracked Since
Feb 18, 2026