Denial of Service Vulnerability in IBM Spectrum Scale for IBM Elastic Storage Server
CVE-2020-4383

5.3MEDIUM

Key Information:

Vendor: IBM
Status: Elastic Storage Server
Vendor: CVE Published:; 24 August 2020

Summary

The vulnerability affects IBM Spectrum Scale for IBM Elastic Storage Server versions 5.3.0 through 5.3.5, allowing an authenticated user to potentially trigger a denial of service condition during the deployment phase. This occurs specifically while configuring network services, which may disrupt service availability. It is crucial for organizations utilizing this product to review their configurations and apply any necessary patches to mitigate risk.

Affected Version(s)

Elastic Storage Server 5.3.0

Elastic Storage Server 5.3.6

References

https://www.ibm.com/support/pages/node/6320003

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/179165

vdb-entryx_refsource_XF

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 24, 2020
Vulnerability Reserved
Dec 30, 2019