Vulnerability Details : CVE-2022-41739
IBM Spectrum Scale (IBM Spectrum Scale Container Native Storage Access 5.1.2.1 through 5.1.6.0) could allow programs running inside the container to overcome isolation mechanism and gain additional capabilities or access sensitive information on the host. IBM X-Force ID: 237815.
Products affected by CVE-2022-41739
- IBM » Spectrum Scale Container Native Storage AccessVersions from including (>=) 5.1.2.1 and up to, including, (<=) 5.1.6.0cpe:2.3:a:ibm:spectrum_scale_container_native_storage_access:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2022-41739
0.03%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 6 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2022-41739
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
8.4
|
HIGH | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N |
2.0
|
5.8
|
NIST | |
|
7.9
|
HIGH | CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:N |
2.5
|
4.7
|
IBM Corporation |
References for CVE-2022-41739
-
https://www.ibm.com/support/pages/node/6964568
Security Bulletin: A vulnerability in IBM Spectrum Scale Container Native that could allow access to confidential information on the hostPatch;Vendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/237815
IBM Spectrum Scale privilege escalation CVE-2022-41739 Vulnerability ReportVDB Entry;Vendor Advisory
Jump to