Vulnerability Details : CVE-2014-3043
IBM Storwize V7000 Unified 1.3.x and 1.4.x before 1.4.3.3 allows remote authenticated users to gain privileges by leveraging access to the service account.
Exploit prediction scoring system (EPSS) score for CVE-2014-3043
Probability of exploitation activity in the next 30 days: 0.22%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 59 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2014-3043
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
6.5
|
MEDIUM | AV:N/AC:L/Au:S/C:P/I:P/A:P |
8.0
|
6.4
|
NIST |
CWE ids for CVE-2014-3043
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2014-3043
-
http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004811
IBM Security Bulletin: Privileged access can be obtained from IBM Service account on IBM Storwize V7000 Unified (CVE-2014-3043)Vendor Advisory
Products affected by CVE-2014-3043
- cpe:2.3:a:ibm:storwize_unified_v7000_software:1.4.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:storwize_unified_v7000_software:1.4.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:storwize_unified_v7000_software:1.4.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:storwize_unified_v7000_software:1.3.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:storwize_unified_v7000_software:1.3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:storwize_unified_v7000_software:1.4.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:storwize_unified_v7000_software:1.4.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:storwize_unified_v7000_software:1.4.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:storwize_unified_v7000_software:1.4.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:storwize_unified_v7000_software:1.4.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:storwize_unified_v7000_software:1.4.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:storwize_unified_v7000_software:1.4.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:storwize_unified_v7000_software:1.4.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:storwize_unified_v7000_software:1.4.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:storwize_unified_v7000_software:1.4.3.2:*:*:*:*:*:*:*
- cpe:2.3:h:ibm:storwize_unified_v7000:-:*:*:*:*:*:*:*