CVE-2021-29873 | Vulnerability Database | Aqua Security

IBM Flash System 900 could allow an authenticated attacker to obtain sensitive information and cause a denial of service due to a restricted shell escape vulnerability. IBM X-Force ID: 206229.

Affected Software

Name	Vendor	Start Version	End Version
Spectrum_virtualize	Ibm	7.8.0.0 (including)	8.4.0.0 (excluding)
Spectrum_virtualize_for_public_cloud	Ibm	7.8.0.0 (including)	8.4.0.0 (excluding)
Storwize_v3500_software	Ibm	7.8.0.0 (including)	8.4.0.0 (excluding)
Storwize_v3700_software	Ibm	7.8.0.0 (including)	8.4.0.0 (excluding)
Storwize_v5000_software	Ibm	7.8.0.0 (including)	8.4.0.0 (excluding)
Storwize_v5100_software	Ibm	7.8.0.0 (including)	8.4.0.0 (excluding)
Storwize_v7000_software	Ibm	7.8.0.0 (including)	8.4.0.0 (excluding)
San_volume_controller_firmware	Ibm	7.8.0.0 (including)	8.4.0.0 (excluding)

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/206229
https://www.ibm.com/support/pages/node/6497111
https://www.ibm.com/support/pages/node/6507091
https://exchange.xforce.ibmcloud.com/vulnerabilities/206229
https://www.ibm.com/support/pages/node/6497111
https://www.ibm.com/support/pages/node/6507091

NVD	https://nvd.nist.gov/vuln/detail/CVE-2021-29873
CWE	https://cwe.mitre.org/data/definitions/.html