N/A

/usr/lpp/mmfs/bin/gpfs.snap in IBM General Parallel File System (GPFS) 4.1 before 4.1.0.7 produces an archive potentially containing cleartext keys, and lacks a warning about reviewing this archive to detect included keys, which might allow remote attackers to obtain sensitive information by leveraging access to a technical-support data stream.

N/A

N/A

IBM General Parallel File System 信息泄露漏洞

IBM General Parallel File System（GPFS）是美国IBM公司的一套专为PB级存储管理而优化的可伸缩、高度可用、高性能的企业文件管理系统。 IBM GPFS 4.1版本的/usr/lpp/mmfs/bin/gpfs.snap文件中存在安全漏洞。远程攻击者可通过访问technical-support数据流利用该漏洞获取敏感信息。

N/A

N/A