CVE-2022-43869

Summary

IBM Spectrum Scale (5.1.0.0 through 5.1.2.8 and 5.1.3.0 through 5.1.5.1) and IBM Elastic Storage System (6.1.0.0 through 6.1.2.4 and 6.1.3.0 through 6.1.4.1) could allow an authenticated user to cause a denial of service through the GUI using a format string attack. IBM X-Force ID: 239539.

Affected Software

VendorProductVersion RangeStatus
IBMElastic Storage System6.1.0.0 < 6.1.2.4affected
IBMSpectrum Scale5.1.0.0 < 5.1.2.8affected
IBMSpectrum Scale5.1.3.0 < 5.1.5.1affected

Weaknesses

  • CWE-134: CWE-134 Use of Externally-Controlled Format String

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References