Privilege Escalation Vulnerability in IBM Storwize V7000 Service Assistant GUI
CVE-2017-1710

9.8CRITICAL

Key Information:

Vendor

IBM
Status
Storwize V7000 (2076)
Vendor
CVE Published:
13 November 2017

What is CVE-2017-1710?

A vulnerability has been identified in the Service Assistant GUI of the IBM Storwize V7000 (2076) version 8.1, which may enable a remote attacker to escalate their privileges, potentially granting them unauthorized access to sensitive system functionalities. This issue highlights the importance of timely updates and proper security configurations to mitigate the risks associated with such vulnerabilities. For further details and potential fixes, refer to the official IBM support documentation and related security resources.

Affected Version(s)

Storwize V7000 (2076) 8.1

References

http://www.ibm.com/support/docview.wss?uid=ssg1S1010788
x_refsource_CONFIRM
http://www.securitytracker.com/id/1039776
vdb-entryx_refsource_SECTRACK
https://exchange.xforce.ibmcloud.com/vulnerabilities/134531
x_refsource_MISC

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.