IBM DS4100 (FAStT100) Dual-Controller Storage Server, Type 1724

CPE Details

IBM DS4100 (FAStT100) Dual-Controller Storage Server, Type 1724
ibm
ds4100
1724
2012-06-22
15h57 +00:00
2012-06-29
12h52 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:h:ibm:ds4100:1724:*:*:*:*:*:*:*

Informations

Vendor

ibm

Product

ds4100

Version

1724

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2012-2171 2012-06-22 08h00 +00:00 SQL injection vulnerability in ModuleServlet.do in the Storage Manager Profiler in IBM System Storage DS Storage Manager before 10.83.xx.18 on DS Series devices allows remote authenticated users to execute arbitrary SQL commands via the selectedModuleOnly parameter in a state_viewmodulelog action to the ModuleServlet URI.
6.5
CVE-2012-2172 2012-06-22 08h00 +00:00 Cross-site scripting (XSS) vulnerability in SoftwareRegistration.do in the Storage Manager Profiler in IBM System Storage DS Storage Manager before 10.83.xx.18 on DS Series devices allows remote attackers to inject arbitrary web script or HTML via the updateRegn parameter.
4.3
CVE-2004-1663 2005-02-20 04h00 +00:00 Engenio/LSI Logic storage controllers, as used in products such as Storagetek D280, and IBM DS4100 (formerly FastT 100) and Brocade SilkWorm Switches, allow remote attackers to cause a denial of service (freeze and possible data corruption) via crafted TCP packets.
5