CVE-2025-0160 Information
Mar 01, 2025
cve
Description
IBM FlashSystem (IBM Storage Virtualize (8.5.0.0 through 8.5.0.13 8.5.1.0 8.5.2.0 through 8.5.2.3 8.5.3.0 through 8.5.3.1 8.5.4.0 8.6.0.0 through 8.6.0.5 8.6.1.0 8.6.2.0 through 8.6.2.1 8.6.3.0 8.7.0.0 through 8.7.0.2 8.7.1.0 8.7.2.0 through 8.7.2.1) could allow a remote attacker with access to the system to execute arbitrary Java code due to improper restrictions in the RPCAdapter service.
CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Reference
https://www.ibm.com/support/pages/node/7184182
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction Required
NONE
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
HIGH
Base Score
HIGH
Base Severity
8.1
Share on: