← back
CVE-2022-41739

IBM Spectrum Scale privilege escalation

CVSS 7.9 HIGHEPSS 0.2%
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.9EPSS 0.2%KEV nãoPoC Nuclei Metasploit Patch referenciado
Lifecycle
26 Apr 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM Spectrum Scale (IBM Spectrum Scale Container Native Storage Access 5.1.2.1 through 5.1.6.0) could allow programs running inside the container to overcome isolation mechanism and gain additional capabilities or access sensitive information on the host. IBM X-Force ID: 237815.
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:N