CVE-2014-4811

Currently unrated

Key Information:

Vendor: IBM
Status: San Volume Controller Software; Storwize V3500; Storwize V3700; Storwize V7000
Vendor: CVE Published:; 12 September 2014

Summary

IBM Storwize 3500, 3700, 5000, and 7000 devices and SAN Volume Controller 6.x and 7.x before 7.2.0.8 allow remote attackers to reset the administrator superuser password to its default value via a direct request to the administrative IP address.

References

http://www.ibm.com/support/docview.wss?uid=ssg1S1004846

x_refsource_CONFIRM

http://www.securityfocus.com/bid/69771

vdb-entryx_refsource_BID

http://secunia.com/advisories/61075

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Sep 12, 2014
Vulnerability Reserved
Jul 9, 2014