How severe is CVE-2017-1304?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.2 out of 10.

What type of vulnerability is CVE-2017-1304?

This is classified as CWE-119, which is a common weakness in software security.

CVE-2017-1304 - MEDIUM Severity | CVSS 6.2

Vulnerability Description

IBM has identified a vulnerability with IBM Spectrum Scale/GPFS utilized on the Elastic Storage Server (ESS)/GPFS Storage Server (GSS) during testing of an unsupported configuration, where users applications are running on an active ESS I/O server node and utilize direct I/O to perform a read or a write to a Spectrum Scale file. This vulnerability may result in the use of an incorrect memory address, leading to a Spectrum Scale/GPFS daemon failure with a Signal 11, and possibly leading to denial of service or undetected data corruption. IBM X-Force ID: 125458.

Related Vulnerabilities

CVE-2011-5320

MEDIUM

CVSS:6.2(Medium)

scanf and related functions in glibc before 2.15 allow local users to cause a denial of service (segmentation fault) via a large string of 0s.

CWE-1192011

CVE-2013-4312

MEDIUM

CVSS:6.2(Medium)

The Linux kernel before 4.4.1 allows local users to bypass file-descriptor limits and cause a denial of service (memory consumption) by sending each descriptor over a UNIX socket before closing it, re...

CWE-1192013

CVE-2015-7975

MEDIUM

CVSS:6.2(Medium)

The nextvar function in NTP before 4.2.8p6 and 4.3.x before 4.3.90 does not properly validate the length of its input, which allows an attacker to cause a denial of service (application crash).

CWE-1192015

CVE-2016-1885

MEDIUM

CVSS:6.2(Medium)

Integer signedness error in the amd64_set_ldt function in sys/amd64/amd64/sys_machdep.c in FreeBSD 9.3 before p39, 10.1 before p31, and 10.2 before p14 allows local users to cause a denial of service ...

CWE-1192016

CVE-2016-3186

MEDIUM

CVSS:6.2(Medium)

Buffer overflow in the readextension function in gif2tiff.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (application crash) via a crafted GIF file.

CWE-1192016

CVE-2016-4804

MEDIUM

CVSS:6.2(Medium)

The read_boot function in boot.c in dosfstools before 4.0 allows attackers to cause a denial of service (crash) via a crafted filesystem, which triggers a heap-based buffer overflow in the (1) read_fa...

CWE-1192016