Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm spectrum protect for virtual environments vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv3
CVE-2018-2025
IBM Spectrum Protect Backup-Archive Client and IBM Spectrum Protect for Virtual Environments 7.1 and 8.1 creates directories/files in the CIT sub directory that are read/writable by everyone. IBM X-Force ID: 155551.
Ibm Spectrum Protect
Ibm Spectrum Protect For Virtual Environments
4 Github repositories
7.5
CVSSv3
CVE-2018-1545
IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 and 8.1) uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 142649.
Ibm Spectrum Protect For Virtual Environments
Ibm Spectrum Protect Client
7.5
CVSSv3
CVE-2018-1785
IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 and 8.1) uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt sensitive information. IBM X-Force ID: 148870.
Ibm Spectrum Protect For Virtual Environments
Ibm Spectrum Protect Client
4.7
CVSSv3
CVE-2023-33832
IBM Spectrum Protect 8.1.0.0 up to and including 8.1.17.0 could allow a local user to cause a denial of service due to due to improper time-of-check to time-of-use functionality. IBM X-Force ID: 256012.
Ibm Spectrum Protect Client
Ibm Spectrum Protect For Space Management
Ibm Spectrum Protect For Virtual Environments
8.1
CVSSv3
CVE-2018-1447
The GSKit (IBM Spectrum Protect 7.1 and 7.2) and (IBM Spectrum Protect Snapshot 4.1.3, 4.1.4, and 4.1.6) CMS KDB logic fails to salt the hash function resulting in weaker than expected protection of passwords. A weak password may be recovered. Note: After update the customer shou...
Ibm Spectrum Protect For Virtual Environments
Ibm Spectrum Protect For Space Management
Ibm Spectrum Protect Snapshot
7.5
CVSSv3
CVE-2018-1786
IBM Spectrum Protect 7.1 and 8.1 dsmc and dsmcad processes incorrectly accumulate TCP/IP sockets in a CLOSE_WAIT state. This can cause TCP/IP resource leakage and may result in a denial of service. IBM X-Force ID: 148871.
Ibm Tivoli Storage Manager
Ibm Spectrum Protect
Ibm Spectrum Protect Manager For Virtual Environments Data Protection For Vmware
Ibm Tivoli Storage Manager For Virtual Environments Data Protection For Vmware
Ibm Spectrum Protect For Virtual Environments Data Protection For Hyper-v
Ibm Tivoli Storage Manager For Virtual Environments Data Protection For Hyper-v
4.7
CVSSv3
CVE-2018-1882
In a certain atypical IBM Spectrum Protect 7.1 and 8.1 configurations, the node password could be displayed in plain text in the IBM Spectrum Protect client trace file. IBM X-Force ID: 151968.
Ibm Spectrum Protect Backup-archive Client
Ibm Spectrum Protect For Virtual Environments
8.5
CVSSv3
CVE-2015-7429
The Data Protection extension in the VMware GUI in IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware (aka Spectrum Protect for Virtual Environments) 7.1 prior to 7.1.4 and Tivoli Storage FlashCopy Manager for VMware (aka Spectrum Protect Snapshot) 4....
Ibm Spectrum Protect For Virtual Environments 7.1
Ibm Spectrum Protect Snapshot 4.1
7.8
CVSSv3
CVE-2021-20532
IBM Spectrum Protect Client 8.1.0.0 up to and including 8.1.11.0 could allow a local user to escalate their privileges to take full control of the system due to insecure directory permissions. IBM X-Force ID: 198811.
Ibm Spectrum Protect Backup-archive Client
Ibm Spectrum Protect For Virtual Environments
10
CVSSv3
CVE-2015-7426
The Data Protection extension in the VMware GUI in IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware (aka Spectrum Protect for Virtual Environments) 7.1 prior to 7.1.3.0 and Tivoli Storage FlashCopy Manager for VMware (aka Spectrum Protect Snapshot) ...
Ibm Spectrum Protect For Virtual Environments 7.1
Ibm Spectrum Protect Snapshot 4.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »