- Description
- IBM Scale Out Network Attached Storage (SONAS) 1.1 through 1.3.1 allows remote authenticated administrators to execute arbitrary Linux commands via the (1) Command Line Interface or (2) Graphical User Interface, related to a "code injection" issue.
- Source
- psirt@us.ibm.com
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 9
- Impact score
- 10
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:C/I:C/A:C
- nvd@nist.gov
- CWE-264
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:ibm:scale_out_network_attached_storage:1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A0A5D397-CC90-41EA-A7B8-AF48A7959CCF"
},
{
"criteria": "cpe:2.3:h:ibm:scale_out_network_attached_storage:1.3.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C68D8BAE-A1AD-44ED-8365-E328E0D1C74F"
}
],
"operator": "OR"
}
]
}
]