Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm spectrum copy data management vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2021-39051
IBM Spectrum Copy Data Management 2.2.0.0 up to and including 2.2.14.3 is vulnerable to server-side request forgery, caused by improper input of application server registration function. A remote attacker could exploit this vulnerability using the host address and port fields of ...
Ibm Spectrum Copy Data Management
3.5
CVSSv2
CVE-2021-39055
IBM Spectrum Copy Data Management 2.2.0.0 up to and including 2.2.14.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure wi...
Ibm Spectrum Copy Data Management
4.3
CVSSv2
CVE-2022-22344
IBM Spectrum Copy Data Management 2.2.0.0 up to and including 2.2.14.3 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an malicious user to conduct various attacks against the vulnerable system, including cross-...
Ibm Spectrum Copy Data Management
5
CVSSv2
CVE-2021-39064
IBM Spectrum Copy Data Management 2.2.13 and previous versions has weak authentication and password rules and incorrectly handles default credentials for the Spectrum Copy Data Management Admin console. IBM X-Force ID: 214957.
Ibm Spectrum Copy Data Management
2.1
CVSSv2
CVE-2022-22426
IBM Spectrum Copy Data Management Admin 2.2.0.0 up to and including 2.2.15.0 could allow a local malicious user to bypass authentication restrictions, caused by the lack of proper session management. An attacker could exploit this vulnerability to bypass authentication and gain u...
Ibm Spectrum Copy Data Management
5
CVSSv2
CVE-2021-39053
IBM Spectrum Copy Data Management 2.2.13 and previous versions could allow a remote malicious user to obtain sensitive information, caused by the improper handling of requests for Spectrum Copy Data Management Admin Console. By sending a specially-crafted request, a remote attack...
Ibm Spectrum Copy Data Management
5
CVSSv2
CVE-2022-22354
IBM Spectrum Protect Plus 10.1.0.0 up to and including 10.1.9.2 and IBM Spectrum Copy Data Management 2.2.0.0 up to and including 2.2.14.3 do not limit the length of a connection which could allow for a Slowloris HTTP denial of service attack to take place. This can cause the Adm...
Ibm Spectrum Copy Data Management
Ibm Spectrum Protect Plus
10
CVSSv2
CVE-2021-39065
IBM Spectrum Copy Data Management 2.2.13 and previous versions could allow a remote malicious user to execute arbitrary commands on the system, caused by improper validation of user-supplied input by the Spectrum Copy Data Management Admin Console login and uploadcertificate func...
Ibm Spectrum Copy Data Management
3.5
CVSSv2
CVE-2022-30610
IBM Spectrum Copy Data Management 2.2.0.0 up to and including 2.2.15.0 is vulnerable to reverse tabnabbing where it could allow a page linked to from within IBM Spectrum Copy Data Management to rewrite it. An administrator could enter a link to a malicious URL that another admini...
Ibm Spectrum Copy Data Management
7.5
CVSSv2
CVE-2021-39052
IBM Spectrum Copy Data Management 2.2.13 and previous versions could allow a remote malicious user to access the Spring Boot console without authorization. IBM X-Force ID: 214523.
Ibm Spectrum Copy Data Management
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »