CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-3077

IBM SONAS and System Storage Storwize V7000 Unified (aka V7000U) 1.3.x and 1.4.x before 1.4.3.4 store the chkauth password in the audit log, which allows local users to obtain sensitive information by reading this log file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 15.6%

CVSS Severity

CVSS v2 Score 2.1

References

Products affected by CVE-2014-3077

Ibm » Storwize V7000 Unified Software » Version: 1.3.0.0

cpe:2.3:a:ibm:storwize_v7000_unified_software:1.3.0.0
Ibm » Storwize V7000 Unified Software » Version: 1.3.2.0

cpe:2.3:a:ibm:storwize_v7000_unified_software:1.3.2.0
Ibm » Storwize V7000 Unified Software » Version: 1.3.2.3

cpe:2.3:a:ibm:storwize_v7000_unified_software:1.3.2.3
Ibm » Storwize V7000 Unified Software » Version: 1.4.0.0

cpe:2.3:a:ibm:storwize_v7000_unified_software:1.4.0.0
Ibm » Storwize V7000 Unified Software » Version: 1.4.0.4

cpe:2.3:a:ibm:storwize_v7000_unified_software:1.4.0.4
Ibm » Storwize V7000 Unified Software » Version: 1.4.1.0

cpe:2.3:a:ibm:storwize_v7000_unified_software:1.4.1.0
Ibm » Storwize V7000 Unified Software » Version: 1.4.1.1

cpe:2.3:a:ibm:storwize_v7000_unified_software:1.4.1.1
Ibm » Storwize V7000 Unified Software » Version: 1.4.2.0

cpe:2.3:a:ibm:storwize_v7000_unified_software:1.4.2.0
Ibm » Storwize V7000 Unified Software » Version: 1.4.3.0

cpe:2.3:a:ibm:storwize_v7000_unified_software:1.4.3.0
Ibm » Storwize V7000 Unified Software » Version: 1.4.3.3

cpe:2.3:a:ibm:storwize_v7000_unified_software:1.4.3.3
Ibm » Storwize Unified V7000 » Version: N/A

cpe:2.3:h:ibm:storwize_unified_v7000:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-3077

Products

Pricing

Contact Us