Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm spectrum protect operations center vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2022-22494
IBM Spectrum Protect Operations Center 8.1.0.000 up to and including 8.1.14 could allow a remote malicious user to gain details of the database, such as type and version, by sending a specially-crafted HTTP request. This information could then be used in future attacks. IBM X-For...
Ibm Spectrum Protect Operations Center
9.8
CVSSv3
CVE-2022-22485
In some cases, an unsuccessful attempt to log into IBM Spectrum Protect Operations Center 8.1.0.000 up to and including 8.1.14.000 does not cause the administrator's invalid sign-on count to be incremented on the IBM Spectrum Protect Server. An attacker could exploit this vu...
Ibm Spectrum Protect Operations Center
5.5
CVSSv3
CVE-2022-22484
IBM Spectrum Protect Operations Center 8.1.12 and 8.1.13 could allow a local malicious user to obtain sensitive information, caused by plain text user account passwords potentially being stored in the browser's application command history. By accessing browser history, an at...
Ibm Spectrum Protect
8.8
CVSSv3
CVE-2022-22346
IBM Spectrum Protect Operations Center 8.1.0.000 up to and including 8.1.13.xxx is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 220048.
Ibm Spectrum Protect Operations Center
2.4
CVSSv3
CVE-2022-22348
IBM Spectrum Protect Operations Center 8.1.0.000 up to and including 8.1.13.xxx is vulnerable to reverse tabnabbing where it could allow a page linked to from within Operations Center to rewrite it. An administrator could enter a link to a malicious URL that another administrator...
Ibm Spectrum Protect Operations Center
5.5
CVSSv3
CVE-2021-38901
IBM Spectrum Protect Operations Center 7.1, under special configurations, could allow a local user to obtain highly sensitive information. IBM X-Force ID: 209610.
Ibm Spectrum Protect Operations Center
5.4
CVSSv3
CVE-2020-4954
IBM Spectrum Protect Operations Center 7.1 and 8.1 could allow a remote malicious user to bypass authentication restrictions, caused by improper session validation . By using the configuration panel to obtain a valid session using an attacker controlled IBM Spectrum Protect serve...
Ibm Spectrum Protect Operations Center
8
CVSSv3
CVE-2020-4955
IBM Spectrum Protect Operations Center 7.1 and 8.1could allow a remote malicious user to execute arbitrary code on the system, caused by improper parameter validation. By creating an unspecified servlet request with specially crafted input parameters, an attacker could exploit th...
Ibm Spectrum Protect Operations Center
4.8
CVSSv3
CVE-2020-4956
IBM Spectrum Protect Operations Center 7.1 and 8.1 is vulnerable to a denial of service, caused by a RPC that allows certain cache values to be set and dumped to a file. By setting a grossly large cache value and dumping that cached value to a file multiple times, a remote attack...
Ibm Spectrum Protect Operations Center
5.3
CVSSv3
CVE-2020-4771
IBM Spectrum Protect Operations Center 8.1.0.000 up to and including 8.1.10.and 7.1.0.000 up to and including 7.1.11 could allow a remote malicious user to obtain sensitive information, caused by improper authentication of a websocket endpoint. By using known tools to subscribe t...
Ibm Spectrum Protect Operations Center
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »