Security Advisory

CVE-2015-1937

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-05-30 19:00:00

Last updated 2024-08-06 05:02:41

Assigner ibm

State PUBLISHED

Description

IBM PowerVC 1.2.0.x through 1.2.0.4, 1.2.1.x through 1.2.1.2, and 1.2.2.x through 1.2.2.2 does not require authentication for the ceilometer NoSQL database, which allows remote attackers to read or write to arbitrary database records, and consequently obtain administrator privileges, via a session on port 27017.

← Browse all CVEs View on cve.org ↗