CVE-2018-1463

IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products ( 6.1, 6.2, 6.3, 6.4, 7.1, 7.2, 7.3, 7.4, 7.5, 7.6, 7.6.1, 7.7, 7.7.1, 7.8, 7.8.1, 8.1, and 8.1.1) could allow an authenticated user to access system files they should not have access to some of which could contain account credentials. IBM X-Force ID: 140368.

Link	Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/140368	VDB Entry Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=ssg1S1012283	Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=ssg1S1012282	Vendor Advisory
http://www.ibm.com/support/docview.wss?uid=ssg1S1012263	Vendor Advisory
http://www.securityfocus.com/bid/104349	Third Party Advisory VDB Entry

Configuration 1

cpe:2.3:a:ibm:spectrum_virtualize:*:*:*:*:*:*:*:* cpe:2.3:a:ibm:spectrum_virtualize:*:*:*:*:*:*:*:* cpe:2.3:a:ibm:spectrum_virtualize:*:*:*:*:*:*:*:* cpe:2.3:a:ibm:spectrum_virtualize:*:*:*:*:*:*:*:* cpe:2.3:a:ibm:spectrum_virtualize:*:*:*:*:*:*:*:* cpe:2.3:a:ibm:spectrum_virtualize_for_public_cloud:*:*:*:*:*:*:*:* cpe:2.3:a:ibm:spectrum_virtualize_for_public_cloud:*:*:*:*:*:*:*:* cpe:2.3:a:ibm:spectrum_virtualize_for_public_cloud:*:*:*:*:*:*:*:* cpe:2.3:a:ibm:spectrum_virtualize_for_public_cloud:*:*:*:*:*:*:*:* cpe:2.3:a:ibm:spectrum_virtualize_for_public_cloud:*:*:*:*:*:*:*:*

---

Published : 2018-05-17 09:29

Updated : 2020-08-19 07:02

---

NVD link : CVE-2018-1463

Mitre link : CVE-2018-1463

No products.

CWE-863