Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM7BC459BFA928D8021BDAFCB95C59B029E00D0479F04F75280CBCAA012FADF463
HistoryApr 08, 2021 - 7:24 p.m.

Security Bulletin: A vulnerability in IBM Spectrum Scale could allow a local attacker to bypass the filesystem audit logging (CVE-2021-29671)

2021-04-0819:24:33
www.ibm.com
5

0.0004 Low

EPSS

Percentile

5.1%

JSON

Summary

A security vulnerability has been identified in IBM Spectrum Scale FAL that could allow a local attacker to bypass the FAL mechanism. A fix for this vulnerability is available.

Vulnerability Details

CVEID:CVE-2021-29671
**DESCRIPTION:**IBM Spectrum Scale could allow a local attacker to bypass the filesystem audit logging mechanism when file audit logging is enabled.
CVSS Base score: 4
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/199478 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

Affected Products and Versions

Affected Product(s) Version(s)
IBM Spectrum Scale 5.1.0.1

Remediation/Fixes

For IBM Spectrum Scale V5.1.0.1, apply V5.1.0.2 or later available from FixCentral at:

https://www.ibm.com/support/fixcentral/swg/selectFixes?parent=Software%20defined%20storage&product=ibm/StorageSoftware/IBM+Spectrum+Scale&release=5.1.0&platform=All&function=all

If you cannot apply the latest level of service, contact IBM Service.

Workarounds and Mitigations

None

CPENameOperatorVersion
ibm spectrum scaleeq5.1

Related

prion 1
cve 1
cvelist 1
nvd 1
prion
prion
Design/Logic Flaw
2021-04-09 17:15:00
cve
cve
CVE-2021-29671
2021-04-09 17:15:16
cvelist
cvelist
CVE-2021-29671
2021-04-08 00:00:00
nvd
nvd
CVE-2021-29671
2021-04-09 17:15:16

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for 7BC459BFA928D8021BDAFCB95C59B029E00D0479F04F75280CBCAA012FADF463
prion1cve1cvelist1nvd1