External Connections Vulnerability Affects IBM Storage Scale Container Native Storage Access
CVE-2022-41738

7.5HIGH

Key Information:

Vendor: IBM
Status: Storage Scale Container Native Storage Access
Vendor: CVE Published:; 17 February 2024

What is CVE-2022-41738?

A vulnerability exists in IBM Storage Scale Container Native Storage Access versions 5.1.2.1 through 5.1.7.0 that may enable unauthorized external network connections to containers. This situation poses significant security risks, as attackers could potentially exploit the affected systems to gain unauthorized access, compromising the integrity and confidentiality of the data stored within the containers. Organizations utilizing these versions of IBM Storage Scale Container Native Storage Access should take immediate action to assess their exposure and implement necessary security measures.

Affected Version(s)

Storage Scale Container Native Storage Access 5.1.2.1 <= 5.1.7.0

References

https://www.ibm.com/support/pages/node/7095312

vendor-advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/237812

vdb-entry

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 17, 2024
Vulnerability Reserved
Sep 28, 2022