Local Privilege Escalation in IBM General Parallel File System
CVE-2015-0197

Currently unrated

Key Information:

Vendor: IBM
Status: General Parallel File System
Vendor: CVE Published:; 24 March 2015

Summary

The IBM General Parallel File System (GPFS) versions prior to 3.4.0.32, 3.5.0.24, and 4.1.0.7 contain a vulnerability that allows local users to escalate privileges to root. This security loophole could be exploited through unspecified vectors, enabling unauthorized program execution with elevated privileges, thereby posing a significant risk to the integrity and confidentiality of system resources.

References

http://www.securitytracker.com/id/1032880

vdb-entryx_refsource_SECTRACK

http://www-01.ibm.com/support/docview.wss?uid=isg3T1022062

x_refsource_CONFIRM

http://www-304.ibm.com/support/docview.wss?uid=swg21902662

x_refsource_CONFIRM

Timeline

Vulnerability published
Mar 24, 2015
Vulnerability Reserved
Nov 18, 2014