Ibm

Spectrum Protect

18 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2023-27863

  • EPSS 0.06%
  • Veröffentlicht 12.05.2023 19:15:08
  • Zuletzt bearbeitet 21.11.2024 07:53:35

IBM Spectrum Protect Plus Server 10.1.13, under specific configurations, could allow an elevated user to obtain SMB credentials that may be used to access vSnap data stores. IBM X-Force ID: 249325.

5.5

CVE-2022-22484

  • EPSS 0.02%
  • Veröffentlicht 17.05.2022 16:15:09
  • Zuletzt bearbeitet 21.11.2024 06:46:52

IBM Spectrum Protect Operations Center 8.1.12 and 8.1.13 could allow a local attacker to obtain sensitive information, caused by plain text user account passwords potentially being stored in the browser's application command history. By accessing bro...

9

CVE-2022-22394

  • EPSS 5.33%
  • Veröffentlicht 21.03.2022 17:15:07
  • Zuletzt bearbeitet 21.11.2024 06:46:44

The IBM Spectrum Protect 8.1.14.000 server could allow a remote attacker to bypass security restrictions, caused by improper enforcement of access controls. By signing in, an attacker could exploit this vulnerability to bypass security and gain unaut...

4.4

CVE-2021-20491

  • EPSS 0.05%
  • Veröffentlicht 16.04.2021 16:15:12
  • Zuletzt bearbeitet 21.11.2024 05:46:39

IBM Spectrum Protect Server 7.1 and 8.1 is subject to a stack-based buffer overflow caused by improper bounds checking during the parsing of commands. By issuing such a command with an improper parameter, an authorized administrator could overflow a ...

5.5

CVE-2020-5017

  • EPSS 0.03%
  • Veröffentlicht 08.01.2021 19:15:14
  • Zuletzt bearbeitet 21.11.2024 05:33:33

IBM Spectrum Protect Plus 10.1.0 through 10.1.6 may allow a local user to obtain access to information beyond their intended role and permissions. IBM X-Force ID: 193653.

7.5

CVE-2020-4559

  • EPSS 0.47%
  • Veröffentlicht 28.08.2020 15:15:12
  • Zuletzt bearbeitet 21.11.2024 05:32:54

IBM Spectrum Protect 7.1 and 8.1 could allow an attacker to cause a denial of service due ti improper validation of user-supplied input. IBM X-Force ID: 183613.

10

CVE-2020-4415

  • EPSS 24.57%
  • Veröffentlicht 23.04.2020 15:15:14
  • Zuletzt bearbeitet 21.11.2024 05:32:42

IBM Spectrum Protect 7.1 and 8.1 server is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. This could allow a remote attacker to execute arbitrary code on the system with the privileges of an administrator or user ass...

10

CVE-2020-4213

  • EPSS 28.95%
  • Veröffentlicht 24.02.2020 16:15:12
  • Zuletzt bearbeitet 21.11.2024 05:32:24

IBM Spectrum Protect Plus 10.1.0 and 10.1.5 could allow a remote attacker to execute arbitrary code on the system. By using a specially crafted HTTP command, an attacker could exploit this vulnerability to execute arbitrary command on the system. IBM...

10

CVE-2020-4222

  • EPSS 28.95%
  • Veröffentlicht 24.02.2020 16:15:12
  • Zuletzt bearbeitet 21.11.2024 05:32:25

IBM Spectrum Protect Plus 10.1.0 and 10.1.5 could allow a remote attacker to execute arbitrary code on the system. By using a specially crafted HTTP command, an attacker could exploit this vulnerability to execute arbitrary command on the system. IBM...

10

CVE-2020-4212

  • EPSS 19.74%
  • Veröffentlicht 24.02.2020 16:15:12
  • Zuletzt bearbeitet 21.11.2024 05:32:24

IBM Spectrum Protect Plus 10.1.0 and 10.1.5 could allow a remote attacker to execute arbitrary code on the system. By using a specially crafted HTTP command, an attacker could exploit this vulnerability to execute arbitrary command on the system. IBM...