CVE-2022-41736 HIGH

CVE-2022-41736: IBM Spectrum Scale Container Native Storage Access privilege escalation

Vendor Ibm
Product Spectrum Scale Container Native Storage Access
Published April 29, 2023
Last update January 30, 2025

CVSS base score

8.4/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

IBM Spectrum Scale Container Native Storage Access 5.1.2.1 through 5.1.6.0 contains an unspecified vulnerability that could allow a local user to obtain root privileges. IBM X-Force ID: 237810.

Key dates

02Disclosure timeline

April 29, 2023 CVE published
January 30, 2025 Record updated