Multiple vulnerabilities in IBM Storage Scale System
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 6 |
| CVE-ID | CVE-2023-52451 CVE-2024-41076 CVE-2024-35890 CVE-2024-42131 CVE-2024-26783 CVE-2024-40995 |
| CWE-ID | CWE-125 CWE-401 CWE-388 CWE-190 CWE-399 CWE-667 |
| Exploitation vector | Local |
| Public exploit | N/A |
| Vulnerable software |
IBM Storage Scale System Server applications / File servers (FTP/HTTP) |
| Vendor | IBM Corporation |
Security Bulletin
This security bulletin contains information about 6 vulnerabilities.
1) Out-of-bounds read
EUVDB-ID: #VU88891
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-52451
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a boundary condition within the dlpar_memory_remove_by_index() function in arch/powerpc/platforms/pseries/hotplug-memory.c. A local user can trigger an out-of-bounds read and perform a denial of service (DoS) attack.
Install update from vendor's website.
Vulnerable software versionsIBM Storage Scale System: 6.1.9.0 - 6.2.0.1
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_storage_scale_system:6.1.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_storage_scale_system:6.1.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_storage_scale_system:6.1.9.3:*:*:*:*:*:*:*
https://www.ibm.com/support/pages/node/7179583
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.
The attacker would have to login to the system and perform certain actions in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Memory leak
EUVDB-ID: #VU94928
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-41076
CWE-ID:
CWE-401 - Missing release of memory after effective lifetime
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the nfs4_set_security_label() function in fs/nfs/nfs4proc.c. A local user can perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsIBM Storage Scale System: 6.1.9.0 - 6.2.0.1
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_storage_scale_system:6.1.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_storage_scale_system:6.1.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_storage_scale_system:6.1.9.3:*:*:*:*:*:*:*
https://www.ibm.com/support/pages/node/7179583
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.
The attacker would have to login to the system and perform certain actions in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Improper error handling
EUVDB-ID: #VU93651
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-35890
CWE-ID:
CWE-388 - Error Handling
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper error handling within the skb_gro_receive_list() and skb_gro_receive() functions in net/core/skbuff.c. A local user can perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsIBM Storage Scale System: 6.1.9.0 - 6.2.0.1
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_storage_scale_system:6.1.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_storage_scale_system:6.1.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_storage_scale_system:6.1.9.3:*:*:*:*:*:*:*
https://www.ibm.com/support/pages/node/7179583
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.
The attacker would have to login to the system and perform certain actions in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Integer overflow
EUVDB-ID: #VU95035
Risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-42131
CWE-ID:
CWE-190 - Integer overflow
Exploit availability: No
DescriptionThe vulnerability allows a local user to execute arbitrary code.
The vulnerability exists due to integer overflow within the domain_dirty_limits(), node_dirty_limit(), dirty_background_bytes_handler() and dirty_bytes_handler() functions in mm/page-writeback.c. A local user can execute arbitrary code.
MitigationInstall update from vendor's website.
Vulnerable software versionsIBM Storage Scale System: 6.1.9.0 - 6.2.0.1
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_storage_scale_system:6.1.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_storage_scale_system:6.1.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_storage_scale_system:6.1.9.3:*:*:*:*:*:*:*
https://www.ibm.com/support/pages/node/7179583
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.
The attacker would have to login to the system and perform certain actions in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Resource management error
EUVDB-ID: #VU93473
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-26783
CWE-ID:
CWE-399 - Resource Management Errors
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to resource management error within the numamigrate_isolate_page() function in mm/migrate.c. A local user can perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsIBM Storage Scale System: 6.1.9.0 - 6.2.0.1
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_storage_scale_system:6.1.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_storage_scale_system:6.1.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_storage_scale_system:6.1.9.3:*:*:*:*:*:*:*
https://www.ibm.com/support/pages/node/7179583
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.
The attacker would have to login to the system and perform certain actions in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
6) Improper locking
EUVDB-ID: #VU94267
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-40995
CWE-ID:
CWE-667 - Improper Locking
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the tcf_idr_check_alloc() and rcu_read_unlock() functions in net/sched/act_api.c. A local user can perform a denial of service (DoS) attack.
MitigationInstall update from vendor's website.
Vulnerable software versionsIBM Storage Scale System: 6.1.9.0 - 6.2.0.1
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_storage_scale_system:6.1.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_storage_scale_system:6.1.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_storage_scale_system:6.1.9.3:*:*:*:*:*:*:*
https://www.ibm.com/support/pages/node/7179583
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.
The attacker would have to login to the system and perform certain actions in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
