Ibm Spectrum Virtualize — known CVE vulnerabilities
Every CVE whose affected-product data names Ibm Spectrum Virtualize, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (17)
CVE-2021-38969 — CVSS 9.8 (critical): IBM Spectrum Virtualize 8.2, 8.3, and 8.4 could allow an attacker to allow unauthorized access due to the reuse of support generated…
CVE-2018-1434 — CVSS 8.8 (high): IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products ( 6.1, 6.2, 6.3, 6.4, 7.1, 7.2, 7.3, 7.4…
CVE-2021-29873 — CVSS 8.1 (high): IBM Flash System 900 could allow an authenticated attacker to obtain sensitive information and cause a denial of service due to a…
CVE-2020-4686 — CVSS 8.1 (high): IBM Spectrum Virtualize 8.3.1 could allow a remote user authenticated via LDAP to escalate their privileges and perform actions they should…
CVE-2018-1462 — CVSS 7.6 (high): IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products ( 6.1, 6.2, 6.3, 6.4, 7.1, 7.2, 7.3, 7.4…
CVE-2018-1433 — CVSS 7.5 (high): IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products ( 6.1, 6.2, 6.3, 6.4, 7.1, 7.2, 7.3, 7.4…
CVE-2018-1438 — CVSS 7.5 (high): IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products ( 6.1, 6.2, 6.3, 6.4, 7.1, 7.2, 7.3, 7.4…
CVE-2018-1463 — CVSS 6.5 (medium): IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products ( 6.1, 6.2, 6.3, 6.4, 7.1, 7.2, 7.3, 7.4…
CVE-2018-1464 — CVSS 6.5 (medium): IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products ( 6.1, 6.2, 6.3, 6.4, 7.1, 7.2, 7.3, 7.4…
CVE-2022-43870 — CVSS 6.5 (medium): IBM Spectrum Virtualize 8.3, 8.4, and 8.5 could disclose SNMPv3 server credentials to an authenticated user in log files. IBM X-Force ID…
CVE-2022-43873 — CVSS 6.3 (medium): An authenticated user can exploit a vulnerability in the IBM Spectrum Virtualize 8.2, 8.3, 8.4, and 8.5 GUI to execute code and escalate…
CVE-2023-27870 — CVSS 5.9 (medium): IBM Spectrum Virtualize 8.5, under certain circumstances, could disclose sensitive credential information while a download from Fix Central…
CVE-2022-39167 — CVSS 5.9 (medium): IBM Spectrum Virtualize 8.5, 8.4, 8.3, 8.2, and 7.8, under certain configurations, could disclose sensitive information to an attacker…
CVE-2018-1461 — CVSS 5.4 (medium): IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products ( 6.1, 6.2, 6.3, 6.4, 7.1, 7.2, 7.3, 7.4…
CVE-2018-1466 — CVSS 5.3 (medium): IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products (6.1, 6.2, 6.3, 6.4, 7.1, 7.2, 7.3, 7.4, 7.5…
CVE-2018-1465 — CVSS 5.3 (medium): IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products ( 6.1, 6.2, 6.3, 6.4, 7.1, 7.2, 7.3, 7.4…
CVE-2023-25681 — CVSS 5.3 (medium): LDAP users on IBM Spectrum Virtualize 8.5 which are configured to require multifactor authentication can still authenticate to the CIM…