CVE-2016-0263

Published Jun 29, 2016
Last updated 7 years ago
CVSS high 7.0
Overview

Description: IBM Spectrum Scale 4.1 before 4.1.1.5 and 4.2 before 4.2.0.2 and General Parallel File System 3.5 before 3.5.0.30 allow local users to gain privileges or cause a denial of service via a crafted mmapplypolicy command.
Source: psirt@us.ibm.com
NVD status: Modified
Risk scores

CVSS 3.0

Type: Primary
Base score: 7
Impact score: 5.9
Exploitability score: 1
Vector string: CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH
CVSS 2.0

Type: Primary
Base score: 7.2
Impact score: 10
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:C/I:C/A:C
Weaknesses

nvd@nist.gov: CWE-264
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3412A6B4-21C3-4567-BDA4-FF3EA66ABB0D"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5D40637D-79CA-4CD3-8A0F-8573EFD51836"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09352FA1-1E53-4DAA-8273-C39E9EC5C2C4"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C4C9F45-D5B9-477D-AC62-82586AE160FC"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A78ED9BF-05B8-4F07-8D48-EBE8005A64ED"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "77DD7E7D-4989-4645-8787-6B0FC8EBA71F"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0D123D10-A15F-40A2-9BF1-53269259CD73"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "97697CA1-8158-4A3E-B9AA-2F61B527C620"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "43DCAC50-7374-47A4-AA3B-AA53C3256CA4"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D0812E2-C758-45B2-ADCD-2D30195FCD4E"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8819B3D7-E048-4CFD-A036-FF81DE14CA9E"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "61D20642-5AAB-47FE-A2BF-E820644C47B7"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "48D1B5ED-5EFD-486D-A3C4-267516D3A782"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.14:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F0D3631-DB5F-4412-A5C4-ABDFFC7C2C99"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "02D54259-9F5B-4D41-9B54-B11578C4E933"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92483FDC-8268-4675-B5D5-C9FF7C30A2B1"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE142AE0-00FF-4DD5-946C-681369771602"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.18:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "764BE5C4-95AE-4CD4-8D45-E77007D6F1A1"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.19:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EEB0D90D-DAA1-4A04-B6EF-6ED0F232F2FA"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ED096F25-D7F9-469D-A991-49B5A0DA8AC6"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92502495-7607-4E4F-A111-43D0CB2AFD92"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.22:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "79BD219A-FF2D-47F1-84BF-60DCE5AB11BA"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.23:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D3B9C0C-C25E-4DBC-AD79-8F2378DD5F09"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.24:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1008DB6C-FB3C-4DD1-B3D4-C5A2EFDF33EE"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.25:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0092597F-578C-40E1-ABDD-D62FB92B8198"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.26:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BBD083B7-D8CA-4735-BEC0-8043C4CA15B7"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.27:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "55502A4C-4CCC-4362-B5FA-1B604E1D22C5"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.28:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0321017B-34E2-4DAD-A032-25695881342A"
          },
          {
            "criteria": "cpe:2.3:a:ibm:general_parallel_file_system_storage_server:3.5.0.29:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5D900767-FCB0-4850-A175-4DAA404FC7A6"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.1.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18C5A85C-F932-44CF-B3EA-691737C96C52"
          },
          {
            "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.1.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9385B07C-881D-4A4E-A0F5-FF1BC88F8CFF"
          },
          {
            "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.1.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "27319318-1C09-4CEE-BAE2-6E52C8FD8DCA"
          },
          {
            "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.1.1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "85F22D48-CB9C-434A-AFD7-50E4E980D1DA"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.2.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A55A717-5CA2-4073-80AA-16044EC23B7B"
          },
          {
            "criteria": "cpe:2.3:a:ibm:spectrum_scale:4.2.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "11BAE960-B5C8-4566-8D18-B2754069C933"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References
