Denial of Service through GUI using Format String Attack in IBM Spectrum Scale and IBM Elastic Storage System

Denial of Service through GUI using Format String Attack in IBM Spectrum Scale and IBM Elastic Storage System

CVE-2022-43869 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

IBM Spectrum Scale (5.1.0.0 through 5.1.2.8 and 5.1.3.0 through 5.1.5.1) and IBM Elastic Storage System (6.1.0.0 through 6.1.2.4 and 6.1.3.0 through 6.1.4.1) could allow an authenticated user to cause a denial of service through the GUI using a format string attack. IBM X-Force ID: 239539.

Learn more about our User Device Pen Test.