CVE-2021-29873

Summary

IBM Flash System 900 could allow an authenticated attacker to obtain sensitive information and cause a denial of service due to a restricted shell escape vulnerability. IBM X-Force ID: 206229.

Affected Software

VendorProductVersion RangeStatus
IBMFlashSystem 9001.6.1.4affected
IBMFlashSystem 9001.5.2.10affected
IBMFlashSystem V90007.8affected
IBMFlashSystem V90008.4affected
IBMStorwize V35007.8affected
IBMStorwize V35008.4affected
IBMStorwize V50007.8affected
IBMStorwize V50008.4affected
IBMStorwize V51008.4affected
IBMStorwize V51007.8affected
IBMFlashSystem 9100 Family8.4affected
IBMFlashSystem 9100 Family7.8affected
IBMStorwize V37007.8affected
IBMStorwize V37008.4affected
IBMSAN Volume Controller7.8affected
IBMSAN Volume Controller8.4affected
IBMStorwize V70008.4affected
IBMStorwize V70007.8affected
IBMSpectrum Virtualize Software7.8affected
IBMSpectrum Virtualize Software8.4affected
IBMSpectrum Virtualize for Public Cloud7.8affected
IBMSpectrum Virtualize for Public Cloud8.4affected

Weaknesses

  • Gain Privileges

ADP Enrichment

CVE Program Container

Additional References

References