What is the severity of CVE-2012-6354?

CVE-2012-6354 is classified as a high severity vulnerability due to its potential for remote unauthenticated access to superuser accounts.

How do I fix CVE-2012-6354?

To fix CVE-2012-6354, update the IBM SAN Volume Controller or Storwize V7000 to version 6.4.1.3 or later.

Which products are affected by CVE-2012-6354?

CVE-2012-6354 affects IBM SAN Volume Controller software versions 6.1.0.0 to 6.4.0.0 and IBM Storwize V7000 firmware.

Can CVE-2012-6354 be exploited remotely?

Yes, CVE-2012-6354 can be exploited remotely, allowing attackers to bypass authentication and gain superuser access.

What are the potential impacts of CVE-2012-6354?

The potential impacts of CVE-2012-6354 include unauthorized access and control over the storage environment, leading to data breaches.

Vulnerability/
CVE-2012-6354

high

7.5

CWE

287

19/2/2013

6/8/2024

CVE-2012-6354

First published: Tue Feb 19 2013(Updated: )

The management GUI on the IBM SAN Volume Controller and Storwize V7000 6.x before 6.4.1.3 allows remote attackers to bypass authentication and obtain superuser access via IP packets.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM SAN Volume Controller software	=6.1.0.0
IBM SAN Volume Controller software	=6.2.0.0
IBM SAN Volume Controller software	=6.3.0.0
IBM SAN Volume Controller software	=6.4.0.0
IBM Storwize V7000 Firmware

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2012-6354?
CVE-2012-6354 is classified as a high severity vulnerability due to its potential for remote unauthenticated access to superuser accounts.
How do I fix CVE-2012-6354?
To fix CVE-2012-6354, update the IBM SAN Volume Controller or Storwize V7000 to version 6.4.1.3 or later.
Which products are affected by CVE-2012-6354?
CVE-2012-6354 affects IBM SAN Volume Controller software versions 6.1.0.0 to 6.4.0.0 and IBM Storwize V7000 firmware.
Can CVE-2012-6354 be exploited remotely?
Yes, CVE-2012-6354 can be exploited remotely, allowing attackers to bypass authentication and gain superuser access.
What are the potential impacts of CVE-2012-6354?
The potential impacts of CVE-2012-6354 include unauthorized access and control over the storage environment, leading to data breaches.

agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/author
agent/weakness
agent/last-modified-date
agent/first-publish-date
agent/description
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/ibm
canonical/ibm san volume controller software
version/ibm san volume controller software/6.1.0.0
version/ibm san volume controller software/6.2.0.0
version/ibm san volume controller software/6.3.0.0
version/ibm san volume controller software/6.4.0.0
canonical/ibm storwize v7000 firmware

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.