What is the severity of CVE-2015-4981?

CVE-2015-4981 has a medium severity rating as it allows local users to access sensitive information from system memory.

How do I fix CVE-2015-4981?

To fix CVE-2015-4981, upgrade to IBM General Parallel File System version 3.5.0.27 or higher, 4.1.1.2 or higher, or Spectrum Scale version 4.1.1.2 or higher.

Who is affected by CVE-2015-4981?

Local users on IBM General Parallel File System versions 3.5.x before 3.5.0.27, 4.1.x before 4.1.1.2, and Spectrum Scale versions 4.1.1.x before 4.1.1.2 are affected.

What type of information can be accessed through CVE-2015-4981?

CVE-2015-4981 potentially allows local users to access sensitive information stored in the system memory.

Is there a workaround for CVE-2015-4981?

There are no known workarounds for CVE-2015-4981, the only solution is to update to the patched versions.

Vulnerability/
CVE-2015-4981

low

2.1

CWE

200

26/10/2015

6/8/2024

CVE-2015-4981: Infoleak

First published: Mon Oct 26 2015(Updated: )

IBM General Parallel File System (GPFS) 3.5.x before 3.5.0.27 and 4.1.x before 4.1.1.2 and Spectrum Scale 4.1.1.x before 4.1.1.2 allow local users to obtain sensitive information from system memory via unspecified vectors.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM General Parallel File System	=3.5
IBM General Parallel File System	=3.5.0.0
IBM General Parallel File System	=3.5.0.2
IBM General Parallel File System	=3.5.0.3
IBM General Parallel File System	=3.5.0.4
IBM General Parallel File System	=3.5.0.6
IBM General Parallel File System	=3.5.0.7
IBM General Parallel File System	=3.5.0.8
IBM General Parallel File System	=3.5.0.9
IBM General Parallel File System	=3.5.0.10
IBM General Parallel File System	=3.5.0.11
IBM General Parallel File System	=3.5.0.12
IBM General Parallel File System	=3.5.0.13
IBM General Parallel File System	=3.5.0.14
IBM General Parallel File System	=3.5.0.15
IBM General Parallel File System	=3.5.0.16
IBM General Parallel File System	=3.5.0.17
IBM General Parallel File System	=3.5.0.18
IBM General Parallel File System	=3.5.0.19
IBM General Parallel File System	=3.5.0.20
IBM General Parallel File System	=3.5.0.21
IBM General Parallel File System	=3.5.0.22
IBM General Parallel File System	=3.5.0.23
IBM General Parallel File System	=3.5.0.24
IBM General Parallel File System	=3.5.0.25
IBM General Parallel File System	=3.5.0.26
IBM Spectrum Scale	=4.1.1.0
IBM Spectrum Scale	=4.1.1.1

Remedy

http://www-01.ibm.com/support/docview.wss?uid=ssg1S1005366

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-4981?
CVE-2015-4981 has a medium severity rating as it allows local users to access sensitive information from system memory.
How do I fix CVE-2015-4981?
To fix CVE-2015-4981, upgrade to IBM General Parallel File System version 3.5.0.27 or higher, 4.1.1.2 or higher, or Spectrum Scale version 4.1.1.2 or higher.
Who is affected by CVE-2015-4981?
Local users on IBM General Parallel File System versions 3.5.x before 3.5.0.27, 4.1.x before 4.1.1.2, and Spectrum Scale versions 4.1.1.x before 4.1.1.2 are affected.
What type of information can be accessed through CVE-2015-4981?
CVE-2015-4981 potentially allows local users to access sensitive information stored in the system memory.
Is there a workaround for CVE-2015-4981?
There are no known workarounds for CVE-2015-4981, the only solution is to update to the patched versions.

collector/nvd-index
agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/weakness
agent/last-modified-date
agent/remedy
agent/author
agent/first-publish-date
agent/description
agent/tags
agent/event
agent/source
vendor/ibm
canonical/ibm general parallel file system
version/ibm general parallel file system/3.5
version/ibm general parallel file system/3.5.0.0
version/ibm general parallel file system/3.5.0.2
version/ibm general parallel file system/3.5.0.3
version/ibm general parallel file system/3.5.0.4
version/ibm general parallel file system/3.5.0.6
version/ibm general parallel file system/3.5.0.7
version/ibm general parallel file system/3.5.0.8
version/ibm general parallel file system/3.5.0.9
version/ibm general parallel file system/3.5.0.10
version/ibm general parallel file system/3.5.0.11
version/ibm general parallel file system/3.5.0.12
version/ibm general parallel file system/3.5.0.13
version/ibm general parallel file system/3.5.0.14
version/ibm general parallel file system/3.5.0.15
version/ibm general parallel file system/3.5.0.16
version/ibm general parallel file system/3.5.0.17
version/ibm general parallel file system/3.5.0.18
version/ibm general parallel file system/3.5.0.19
version/ibm general parallel file system/3.5.0.20
version/ibm general parallel file system/3.5.0.21
version/ibm general parallel file system/3.5.0.22
version/ibm general parallel file system/3.5.0.23
version/ibm general parallel file system/3.5.0.24
version/ibm general parallel file system/3.5.0.25
version/ibm general parallel file system/3.5.0.26
canonical/ibm spectrum scale
version/ibm spectrum scale/4.1.1.0
version/ibm spectrum scale/4.1.1.1

Frequently Asked Questions

What is the severity of CVE-2015-4981?
CVE-2015-4981 has a medium severity rating as it allows local users to access sensitive information from system memory.
How do I fix CVE-2015-4981?
To fix CVE-2015-4981, upgrade to IBM General Parallel File System version 3.5.0.27 or higher, 4.1.1.2 or higher, or Spectrum Scale version 4.1.1.2 or higher.
Who is affected by CVE-2015-4981?
Local users on IBM General Parallel File System versions 3.5.x before 3.5.0.27, 4.1.x before 4.1.1.2, and Spectrum Scale versions 4.1.1.x before 4.1.1.2 are affected.
What type of information can be accessed through CVE-2015-4981?
CVE-2015-4981 potentially allows local users to access sensitive information stored in the system memory.
Is there a workaround for CVE-2015-4981?
There are no known workarounds for CVE-2015-4981, the only solution is to update to the patched versions.

CVE-2015-4981: Infoleak

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-4981?

How do I fix CVE-2015-4981?

Who is affected by CVE-2015-4981?

What type of information can be accessed through CVE-2015-4981?

Is there a workaround for CVE-2015-4981?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2015-4981?

How do I fix CVE-2015-4981?

Who is affected by CVE-2015-4981?

What type of information can be accessed through CVE-2015-4981?

Is there a workaround for CVE-2015-4981?