Format String Security Vulnerability in IBM Spectrum Scale System Core Component

Format String Security Vulnerability in IBM Spectrum Scale System Core Component

CVE-2021-29740 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.3 system core component is affected by a format string security vulnerability. An attacker could execute arbitrary code in the context of process memory, potentially escalating their system privileges and taking control over the entire system with root access. IBM X-Force ID: 201474.

Learn more about our Web Application Penetration Testing UK.