IBM Security Bulletin: IBM Virtualization Engine TS7700 is affected by vulnerabilities in IBM General Parallel File System (CVE-2015-0197, CVE-2015-0198)
|
System information
|
| |
|
|
Affected software |
IBM |
Description
|
Security vulnerabilities have been identified in current levels of GPFS V3.5 and V3.4 as used within the IBM Virtualization Engine TS7700: - could allow a local attacker which only has a non-privileged account to execute programs with root privileges (CVE-2015-0197) - may not properly authenticate network requests and could allow an attacker to execute programs remotely with root privileges (CVE-2015-0198) CVE(s): CVE-2015-0197 and CVE-2015-0198 Affected product(s) and affected version(s):
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_ibm_virtualization_engine_ts7700_is_affected_by_vulnerabilities_in_ibm_general_parallel_file_system_cve_2015_0197_cve_2015_0198?lang=en_us |
Standar resources
|
|
Property |
Value |
|
CVE |
CVE-2015-0197 ,CVE-2015-0198 ,CVE-2014-0227 ,CVE-2014-0230 ,CVE-2015-4620 and CVE-2015-5380. |
