CVE-2025-14604

Summary

IBM Storage Scale IBM S through rage Scale 5.2.3.0 - 5.2.3.5, and IBM S through rage Scale 6.0.0.0 - 6.0.0.1 could allow a local user to unintentionally trigger additional permissions for resources in a way that allows that resource to be executed by unintended actors.

Affected Software

VendorProductVersion RangeStatus
IBMStorage ScaleIBM S <= rage Scale 5.2.3.0 - 5.2.3.5affected
IBMStorage ScaleIBM S <= rage Scale 6.0.0.0 - 6.0.0.1affected

Weaknesses

  • CWE-732: CWE-732 Incorrect Permission Assignment for Critical Resource

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References