CVE-2021-29740

IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.3 system core component is affected by a format string security vulnerability. An attacker could execute arbitrary code in the context of process memory, potentially escalating their system privileges and taking control over the entire system with root access. IBM X-Force ID: 201474.

Published: Jun 1, 2021
Updated: Apr 14, 2023
CVE: CVE-2021-29740
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-134

Affected Software
References

Software	From	Fixed in
ibm / spectrum_scale	5.1.0	5.1.1.0
ibm / spectrum_scale	5.0.0.0	5.0.5.7

https://exchange.xforce.ibmcloud.com/vulnerabilities/201474
https://www.ibm.com/support/pages/node/6457629

Vulnerability Database

289,697

CVE-2021-29740