Medium Severity

Security Bulletin: A vulnerability exists in the management GUI of the IBM FlashSystem 900

Share this post:

A vulnerability (CVE-2020-4987) affects the IBM FlashSystem model 900 management GUI.

CVE(s): CVE-2020-4987

Affected product(s) and affected version(s):

Storage Node machine type and models (MTMs) affected:

  • 9840-AE1 and 9843-AE1
  • 9840-AE2 and 9843-AE2
  • 9840-AE3 and 9843-AE3
Supported storage node code versions which are affected:
  • VRMFs prior to 1.5.2.9
  • VRMFs prior to 1.6.1.3
Note: For information on IBM FlashSystem V9000 SVC code levels affected and remediated, search for the equivalent security bulletin here: IBM Support

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6449280
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/192702

More stories

Security Bulletin: Security vulnerability affects the Report Builder that is shipped with Jazz Reporting Service (CVE-2021-20535)

May 12, 2021 8:01 pm EDT | Medium Severity

There is a security vulnerability in the Report Builder shipped with Jazz Reporting Service. ...read more


Security Bulletin: A vulnerability exists in the management GUI of the IBM FlashSystem 900

May 12, 2021 8:01 pm EDT | Medium Severity

A vulnerability (CVE-2020-4987) affects the IBM FlashSystem model 900 management GUI. ...read more


Security Bulletin: A security vulnerability in Node.js glob-parent module affects IBM Cloud Automation Manager.

May 11, 2021 8:00 pm EDT | Medium Severity

A security vulnerability in Node.js glob-parent module affects IBM Cloud Automation Manager. ...read more