Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm spectrum protect plus vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2021-20490
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.8 could allow a local user to cause a denial of service due to insecure file permission settings. IBM X-Force ID: 197791.
Ibm Spectrum Protect Plus
2.1
CVSSv2
CVE-2021-20536
IBM Spectrum Protect Plus File Systems Agent 10.1.6 and 10.1.7 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 198836.
Ibm Spectrum Protect Plus 10.1.6
Ibm Spectrum Protect Plus 10.1.7
5
CVSSv2
CVE-2021-29694
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.7 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 200258.
Ibm Spectrum Protect Plus
6.4
CVSSv2
CVE-2021-20432
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.7 uses Cross-Origin Resource Sharing (CORS) which could allow an malicious user to carry out privileged actions and retrieve sensitive information as the domain name is not being limited to only trusted domains. IBM X-Forc...
Ibm Spectrum Protect Plus
5
CVSSv2
CVE-2020-5023
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.7 could allow a remote user to inject arbitrary data iwhich could cause the serivce to crash due to excess resource consumption. IBM X-Force ID: 193659.
Ibm Spectrum Protect Plus
4.3
CVSSv2
CVE-2020-5020
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.6 could allow a remote malicious user to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click ...
Ibm Spectrum Protect Plus
2.1
CVSSv2
CVE-2020-5017
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.6 may allow a local user to obtain access to information beyond their intended role and permissions. IBM X-Force ID: 193653.
Ibm Spectrum Protect
5
CVSSv2
CVE-2020-5018
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.6 may include sensitive information in its URLs increasing the risk of such information being caputured by an attacker. IBM X-Force ID: 193654.
Ibm Spectrum Protect Plus
6.4
CVSSv2
CVE-2020-5019
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.6 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. By sending a specially crafted HTTP request, a remote attacker could exploit this vulnerability to inject HTTP HOST head...
Ibm Spectrum Protect Plus
3.6
CVSSv2
CVE-2020-5021
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.6 does not invalidate session after a password reset which could allow a local user to impersonate another user on the system. IBM X-Force ID: 193657.
Ibm Spectrum Protect Plus
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »