Arbitrary File Download Vulnerability in IBM Storage Products

Arbitrary File Download Vulnerability in IBM Storage Products

CVE-2018-1775 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products versions 7.5 through 8.2 could allow an authenticated user to download arbitrary files from the operating system. IBM X-Force ID: 148757.

Learn more about our User Device Pen Test.