VYPR

Xiv Storage System Gen3

by IBM

CVEs (3)

  • CVE-2012-2166CriFeb 8, 2018
    risk 0.64cvss 9.8epss 0.03

    IBM XIV Storage System 2810-A14 and 2812-A14 devices before level 10.2.4.e-2 and 2810-114 and 2812-114 devices before level 11.1.1 have hardcoded passwords for unspecified accounts, which allows remote attackers to gain user access via unknown vectors. IBM X-Force ID: 75041.

  • CVE-2012-4829Apr 16, 2013
    risk 0.00cvss epss 0.01

    IBM XIV Storage System Gen3 before 11.2 relies on a default X.509 v3 certificate for authentication, which allows man-in-the-middle attackers to spoof servers by leveraging an inappropriate certificate-trust relationship.

  • CVE-2012-2167Oct 20, 2012
    risk 0.00cvss epss 0.03

    The IBM XIV Storage System Gen3 before 11.1.0.a allows remote attackers to cause a denial of service (device outage) via TCP packets to unspecified ports.