Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
spectrum protect vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv2
CVE-2021-39057
IBM Spectrum Protect Plus 10.1.0.0 up to and including 10.1.8.x is vulnerable to server-side request forgery (SSRF). This may allow an authenticated malicious user to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other atta...
Ibm Spectrum Protect Plus
1.9
CVSSv2
CVE-2020-4591
IBM Spectrum Protect Server 8.1.0.000 up to and including 8.1.10.000 could disclose sensitive information in nondefault settings due to occasionally not encrypting the second chunk of an object in an encrypted container pool. IBM X-Force ID: 184746.
Ibm Spectrum Protect Server
5.5
CVSSv2
CVE-2020-4209
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.5 could allow a remote malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to create arbitrary files on the system. I...
Ibm Spectrum Protect Plus
2.1
CVSSv2
CVE-2016-5927
IBM Tivoli Storage Manager for Space Management (aka Spectrum Protect for Space Management) 6.3.x prior to 6.3.2.6, 6.4.x prior to 6.4.3.3, and 7.1.x prior to 7.1.6, when certain dsmsetpw tracing is configured, allows local users to discover an encrypted password by reading appli...
Ibm Tivoli Storage Manager For Space Management 6.4.0.0
Ibm Tivoli Storage Manager For Space Management 6.4.3
Ibm Tivoli Storage Manager For Space Management 7.1.0
Ibm Tivoli Storage Manager For Space Management 6.3.0
Ibm Tivoli Storage Manager For Space Management 7.1.2
Ibm Tivoli Storage Manager For Space Management 7.1.3
Ibm Tivoli Storage Manager For Space Management 6.4.1
Ibm Tivoli Storage Manager For Space Management 6.4.2
Ibm Tivoli Storage Manager For Space Management 7.1.4
Ibm Tivoli Storage Manager For Space Management 6.4.0
Ibm Tivoli Storage Manager For Space Management 6.3.2
Ibm Tivoli Storage Manager For Space Management 7.1.1
5
CVSSv2
CVE-2022-22494
IBM Spectrum Protect Operations Center 8.1.0.000 up to and including 8.1.14 could allow a remote malicious user to gain details of the database, such as type and version, by sending a specially-crafted HTTP request. This information could then be used in future attacks. IBM X-For...
Ibm Spectrum Protect Operations Center
6.4
CVSSv2
CVE-2021-20432
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.7 uses Cross-Origin Resource Sharing (CORS) which could allow an malicious user to carry out privileged actions and retrieve sensitive information as the domain name is not being limited to only trusted domains. IBM X-Forc...
Ibm Spectrum Protect Plus
9
CVSSv2
CVE-2022-22394
The IBM Spectrum Protect 8.1.14.000 server could allow a remote malicious user to bypass security restrictions, caused by improper enforcement of access controls. By signing in, an attacker could exploit this vulnerability to bypass security and gain unauthorized administrator or...
Ibm Spectrum Protect 8.1.14.100
2.6
CVSSv2
CVE-2015-7408
The server in IBM Spectrum Protect (aka Tivoli Storage Manager) 5.5 and 6.x prior to 6.3.5.1 and 7.x prior to 7.1.4 does not properly restrict use of the ASNODENAME option, which allows remote malicious users to read or write to backup data by leveraging proxy authority.
Ibm Tivoli Storage Manager 6.3.4.0
Ibm Tivoli Storage Manager 6.3.3.0
Ibm Tivoli Storage Manager 7.1.0.3
Ibm Tivoli Storage Manager 7.1.0.2
Ibm Tivoli Storage Manager 7.1.0.1
Ibm Tivoli Storage Manager 5.5.0.0
Ibm Tivoli Storage Manager 6.2.0.0
Ibm Tivoli Storage Manager 7.1.0.0
Ibm Tivoli Storage Manager 6.1.0.0
Ibm Tivoli Storage Manager 6.3.5.0
2.1
CVSSv2
CVE-2016-2894
IBM Spectrum Protect (formerly Tivoli Storage Manager) 5.5 up to and including 6.3 prior to 6.3.2.6, 6.4 prior to 6.4.3.3, and 7.1 prior to 7.1.6 allows local users to obtain sensitive retrieved data from arbitrary accounts in opportunistic circumstances by leveraging previous us...
Ibm Tivoli Storage Manager 6.3.0.17
Ibm Tivoli Storage Manager 6.3.0.15
Ibm Tivoli Storage Manager 6.2.1
Ibm Tivoli Storage Manager 6.2.0
Ibm Tivoli Storage Manager 6.1.2
Ibm Tivoli Storage Manager 6.1.1
Ibm Tivoli Storage Manager 5.5.3
Ibm Tivoli Storage Manager 5.5.2
Ibm Tivoli Storage Manager 6.3.1
Ibm Tivoli Storage Manager 6.3.0.5
Ibm Tivoli Storage Manager 6.2.3
Ibm Tivoli Storage Manager 6.2.2
Ibm Tivoli Storage Manager 6.1.5
Ibm Tivoli Storage Manager 6.1.4
Ibm Tivoli Storage Manager 6.1.3
Ibm Tivoli Storage Manager 5.5.4.1
Ibm Tivoli Storage Manager 5.5.4
Ibm Tivoli Storage Manager 6.3.0
Ibm Tivoli Storage Manager 6.3
Ibm Tivoli Storage Manager 6.2
Ibm Tivoli Storage Manager 6.1.5.6
Ibm Tivoli Storage Manager 6.1.0
4.6
CVSSv2
CVE-2016-2988
IBM Tivoli Storage Manger for Virtual Environments: Data Protection for VMware (aka Spectrum Protect for Virtual Environments) 6.4.x prior to 6.4.3.4 and 7.1.x prior to 7.1.6 allows remote authenticated users to bypass a TSM credential requirement and obtain administrative access...
Ibm Tivoli Storage Manager For Virtual Environments 7.1
Ibm Tivoli Storage Manager For Virtual Environments 6.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »