CVE-2012-6354

critical

Description

The management GUI on the IBM SAN Volume Controller and Storwize V7000 6.x before 6.4.1.3 allows remote attackers to bypass authentication and obtain superuser access via IP packets.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/80716

http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004277

Details

Source: Mitre, NVD

Published: 2013-02-19

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.00157