CVE-2018-1465

Summary

IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products ( 6.1, 6.2, 6.3, 6.4, 7.1, 7.2, 7.3, 7.4, 7.5, 7.6, 7.6.1, 7.7, 7.7.1, 7.8, 7.8.1, 8.1, and 8.1.1) could allow an authenticated user to obtain the private key which could make intercepting GUI communications possible. IBM X-Force ID: 140396.

Affected Software

VendorProductVersion RangeStatus
IBMStorwize V35006.4affected
IBMStorwize V35007.1affected
IBMStorwize V35007.5affected
IBMStorwize V35007.6affected
IBMStorwize V35007.6.1affected
IBMStorwize V35007.7affected
IBMStorwize V35007.7.1affected
IBMStorwize V35007.8affected
IBMStorwize V35007.8.1affected
IBMStorwize V35008.1affected
IBMStorwize V35006.1affected
IBMStorwize V35006.2affected
IBMStorwize V35006.3affected
IBMStorwize V35007.2affected
IBMStorwize V35007.3affected
IBMStorwize V35007.4affected
IBMStorwize V35008.1.1affected
IBMSAN Volume Controller6.1affected
IBMSAN Volume Controller6.2affected
IBMSAN Volume Controller6.3affected
IBMSAN Volume Controller6.4affected
IBMSAN Volume Controller7.1affected
IBMSAN Volume Controller7.5affected
IBMSAN Volume Controller7.6affected
IBMSAN Volume Controller7.6.1affected
IBMSAN Volume Controller7.7affected
IBMSAN Volume Controller7.7.1affected
IBMSAN Volume Controller7.8affected
IBMSAN Volume Controller7.8.1affected
IBMSAN Volume Controller8.1affected
IBMSpectrum Virtualize Software7.5affected
IBMSpectrum Virtualize Software7.6affected
IBMSpectrum Virtualize Software7.6.1affected
IBMSpectrum Virtualize Software7.7affected
IBMSpectrum Virtualize Software7.7.1affected
IBMSpectrum Virtualize Software7.8affected
IBMSpectrum Virtualize Software7.8.1affected
IBMSpectrum Virtualize Software8.1affected
IBMSpectrum Virtualize Software6.1affected
IBMSpectrum Virtualize Software6.2affected
IBMSpectrum Virtualize Software6.3affected
IBMSpectrum Virtualize Software6.4affected
IBMSpectrum Virtualize Software7.1affected
IBMSpectrum Virtualize Software7.2affected
IBMSpectrum Virtualize Software7.3affected
IBMSpectrum Virtualize Software7.4affected
IBMSpectrum Virtualize Software8.1.1affected
IBMSpectrum Virtualize for Public Cloud7.5affected
IBMSpectrum Virtualize for Public Cloud7.6affected
IBMSpectrum Virtualize for Public Cloud7.6.1affected
IBMSpectrum Virtualize for Public Cloud7.7affected
IBMSpectrum Virtualize for Public Cloud7.7.1affected
IBMSpectrum Virtualize for Public Cloud7.8affected
IBMSpectrum Virtualize for Public Cloud7.8.1affected
IBMSpectrum Virtualize for Public Cloud8.1affected
IBMSpectrum Virtualize for Public Cloud6.1affected
IBMSpectrum Virtualize for Public Cloud6.2affected
IBMSpectrum Virtualize for Public Cloud6.3affected
IBMSpectrum Virtualize for Public Cloud6.4affected
IBMSpectrum Virtualize for Public Cloud7.1affected
IBMSpectrum Virtualize for Public Cloud7.2affected
IBMSpectrum Virtualize for Public Cloud7.3affected
IBMSpectrum Virtualize for Public Cloud7.4affected
IBMSpectrum Virtualize for Public Cloud8.1.1affected
IBMStorwize V7000 (2076)6.1affected
IBMStorwize V7000 (2076)6.2affected
IBMStorwize V7000 (2076)6.3affected
IBMStorwize V7000 (2076)6.4affected
IBMStorwize V7000 (2076)7.1affected
IBMStorwize V7000 (2076)7.2affected
IBMStorwize V7000 (2076)7.3affected
IBMStorwize V7000 (2076)7.4affected
IBMStorwize V7000 (2076)1.1affected
IBMStorwize V7000 (2076)7.5affected
IBMStorwize V7000 (2076)7.6affected
IBMStorwize V7000 (2076)7.6.1affected
IBMStorwize V7000 (2076)7.7affected
IBMStorwize V7000 (2076)7.7.1affected
IBMStorwize V7000 (2076)7.8affected
IBMStorwize V7000 (2076)7.8.1affected
IBMStorwize V7000 (2076)8.1affected
IBMStorwize V7000 (2076)8.1.1affected
IBMFlashSystem V90007.5affected
IBMFlashSystem V90007.6affected
IBMFlashSystem V90007.6.1affected
IBMFlashSystem V90007.7affected
IBMFlashSystem V90007.7.1affected
IBMFlashSystem V90007.8affected
IBMFlashSystem V90007.8.1affected
IBMFlashSystem V90008.1affected
IBMFlashSystem V90006.1affected
IBMFlashSystem V90006.2affected
IBMFlashSystem V90006.3affected
IBMFlashSystem V90006.4affected
IBMFlashSystem V90007.1affected
IBMFlashSystem V90007.2affected
IBMFlashSystem V90007.3affected
IBMFlashSystem V90007.4affected
IBMFlashSystem V90008.1.1affected
IBMStorwize V50007.1affected
IBMStorwize V50007.5affected
IBMStorwize V50007.6affected
IBMStorwize V50007.6.1affected
IBMStorwize V50007.7affected
IBMStorwize V50007.7.1affected
IBMStorwize V50007.8affected
IBMStorwize V50007.8.1affected
IBMStorwize V50008.1affected
IBMStorwize V50006.1affected
IBMStorwize V50006.2affected
IBMStorwize V50006.3affected
IBMStorwize V50006.4affected
IBMStorwize V50007.2affected
IBMStorwize V50007.3affected
IBMStorwize V50007.4affected
IBMStorwize V50008.1.1affected
IBMStorwize V37007.1affected
IBMStorwize V37006.4affected
IBMStorwize V37007.5affected
IBMStorwize V37007.6affected
IBMStorwize V37007.6.1affected
IBMStorwize V37007.7affected
IBMStorwize V37007.7.1affected
IBMStorwize V37007.8affected
IBMStorwize V37007.8.1affected
IBMStorwize V37008.1affected
IBMStorwize V37006.1affected
IBMStorwize V37006.2affected
IBMStorwize V37006.3affected
IBMStorwize V37007.2affected
IBMStorwize V37007.3affected
IBMStorwize V37007.4affected
IBMStorwize V37008.1.1affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References