← voltar
CVE-2018-1775

CVE-2018-1775

CVSS 6.5 MEDIUMEPSS 1.9%
Vexday Risk Score
13Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 6.5EPSS 1.9%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
27 fev 2019Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products versions 7.5 through 8.2 could allow an authenticated user to download arbitrary files from the operating system. IBM X-Force ID: 148757.
CVSS:3.0/A:N/AC:L/AV:N/C:H/I:N/PR:L/S:U/UI:N/E:U/RC:C/RL:T
Produtos afetados
IBM · FlashSystem 9100 FamilyIBM · FlashSystem V9000IBM · SAN Volume ControllerIBM · Spectrum Virtualize for Public CloudIBM · Spectrum Virtualize SoftwareIBM · torwize V3500IBM · torwize V3700IBM · torwize V5000IBM · torwize V7000

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://exchange.xforce.ibmcloud.com/vulnerabilities/148757https://www.ibm.com/support/docview.wss?uid=ibm10872486http://www.securityfocus.com/bid/107187