Information disclosure in SAN Volume Controller, Storwize family and FlashSystem V9000 products

1) Information disclosure

EUVDB-ID: #VU6674

Risk: Low

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2017-5647

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a remote attacker to obtain potentially sensitive information on the target system.

The weakness exists in the handling of the pipelined requests when send file was used resulted in the pipelined request being lost when send file processing of the previous request completed. A remote attacker can cause responses to appear to be sent for the wrong request.

Mitigation

Install update from vendor's website.

Vulnerable software versions

IBM SAN Volume Controller: before 7.5.0.13

IBM Storwize V3500: before 7.5.0.13

IBM Storwize V3700: before 7.5.0.13

IBM Storwize V5000: before 7.5.0.13

IBM Storwize V7000: before 7.5.0.13

IBM FlashSystem V9000: before 7.5.1.6

CPE2.3

• cpe:2.3:h:ibm_corporation:ibm_san_volume_controller:*:*:*:*:*:*:*:*
• cpe:2.3:h:ibm_corporation:ibm_storwize_v3500:*:*:*:*:*:*:*:*
• cpe:2.3:h:ibm_corporation:ibm_storwize_v3700:*:*:*:*:*:*:*:*
• cpe:2.3:h:ibm_corporation:ibm_storwize_v5000:*:*:*:*:*:*:*:*
• cpe:2.3:h:ibm_corporation:ibm_storwize_v7000:*:*:*:*:*:*:*:*
• cpe:2.3:h:ibm_corporation:ibm_flashsystem_v9000:*:*:*:*:*:*:*:*

External links

https://www.ibm.com/support/pages/node/698485

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.