Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm spectrum protect vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2021-29672
IBM Spectrum Protect Client 8.1.0.0-8 up to and including 1.11.0 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking when processing the current locale settings. A local attacker could overflow a buffer and execute arbitrary code on the system with ...
Ibm Spectrum Protect Client
Ibm Spectrum Protect For Space Management
6.5
CVSSv3
CVE-2021-20432
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.7 uses Cross-Origin Resource Sharing (CORS) which could allow an malicious user to carry out privileged actions and retrieve sensitive information as the domain name is not being limited to only trusted domains. IBM X-Forc...
Ibm Spectrum Protect Plus
4.4
CVSSv3
CVE-2021-20491
IBM Spectrum Protect Server 7.1 and 8.1 is subject to a stack-based buffer overflow caused by improper bounds checking during the parsing of commands. By issuing such a command with an improper parameter, an authorized administrator could overflow a buffer and cause the server to...
5.4
CVSSv3
CVE-2020-4954
IBM Spectrum Protect Operations Center 7.1 and 8.1 could allow a remote malicious user to bypass authentication restrictions, caused by improper session validation . By using the configuration panel to obtain a valid session using an attacker controlled IBM Spectrum Protect serve...
Ibm Spectrum Protect Operations Center
8
CVSSv3
CVE-2020-4955
IBM Spectrum Protect Operations Center 7.1 and 8.1could allow a remote malicious user to execute arbitrary code on the system, caused by improper parameter validation. By creating an unspecified servlet request with specially crafted input parameters, an attacker could exploit th...
Ibm Spectrum Protect Operations Center
4.8
CVSSv3
CVE-2020-4956
IBM Spectrum Protect Operations Center 7.1 and 8.1 is vulnerable to a denial of service, caused by a RPC that allows certain cache values to be set and dumped to a file. By setting a grossly large cache value and dumping that cached value to a file multiple times, a remote attack...
Ibm Spectrum Protect Operations Center
7.5
CVSSv3
CVE-2020-5023
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.7 could allow a remote user to inject arbitrary data iwhich could cause the serivce to crash due to excess resource consumption. IBM X-Force ID: 193659.
Ibm Spectrum Protect Plus
6.5
CVSSv3
CVE-2020-5019
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.6 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. By sending a specially crafted HTTP request, a remote attacker could exploit this vulnerability to inject HTTP HOST head...
Ibm Spectrum Protect Plus
5.5
CVSSv3
CVE-2020-5017
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.6 may allow a local user to obtain access to information beyond their intended role and permissions. IBM X-Force ID: 193653.
Ibm Spectrum Protect
7.5
CVSSv3
CVE-2020-5018
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.6 may include sensitive information in its URLs increasing the risk of such information being caputured by an attacker. IBM X-Force ID: 193654.
Ibm Spectrum Protect Plus
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »