Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
spectrum protect vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2020-4216
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.5 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 1...
Ibm Spectrum Protect Plus
5
CVSSv2
CVE-2021-29694
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.7 uses weaker than expected cryptographic algorithms that could allow an malicious user to decrypt highly sensitive information. IBM X-Force ID: 200258.
Ibm Spectrum Protect Plus
9
CVSSv2
CVE-2020-4206
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.5 could allow a remote malicious user to execute arbitrary commands on the system in the context of root user, caused by improper validation of user-supplied input. IBM X-Force ID: 174966.
Ibm Spectrum Protect Plus
6.4
CVSSv2
CVE-2020-4214
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.5 could allow a remote malicious user to arbitrary delete a directory caused by improper validation of user-supplied input. IBM X-Force ID: 175026.
Ibm Spectrum Protect Plus
6.4
CVSSv2
CVE-2020-4240
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.5 could allow a remote malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request to overwrite or create arbitrary files on the system. IBM X-Force ID: 175417.
Ibm Spectrum Protect Plus
2.9
CVSSv2
CVE-2019-4703
IBM Spectrum Protect Plus 10.1.0 and 10.5.0, when protecting Microsoft SQL or Microsoft Exchange, could allow an attacker with intimate knowledge of the system to obtain highly sensitive information.
Ibm Spectrum Protect Plus
2.1
CVSSv2
CVE-2021-20490
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.8 could allow a local user to cause a denial of service due to insecure file permission settings. IBM X-Force ID: 197791.
Ibm Spectrum Protect Plus
3.6
CVSSv2
CVE-2019-4652
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.4 uses insecure file permissions on restored files and directories in Windows which could allow a local user to obtain sensitive information or perform unauthorized actions. IBM X-Force ID: 170963.
Ibm Spectrum Protect Plus
5
CVSSv2
CVE-2022-22396
Credentials are printed in clear text in the IBM Spectrum Protect Plus 10.1.0.0 up to and including 10.1.9.3 virgo log file in certain cases. Credentials could be the remote vSnap, offload targets, or VADP credentials depending on the operation performed. Credentials that are usi...
Ibm Spectrum Protect Plus
6.4
CVSSv2
CVE-2021-20432
IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.7 uses Cross-Origin Resource Sharing (CORS) which could allow an malicious user to carry out privileged actions and retrieve sensitive information as the domain name is not being limited to only trusted domains. IBM X-Forc...
Ibm Spectrum Protect Plus
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29824
CVE-2024-30095
CVE-2024-30104
client side
CVE-2024-5840
CVE-2024-34405
unprivileged
wireless
CVE-2024-4577
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »