Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM2D0FC06FCC6F5468516954847DE60150729FD87294848F95D4F6D2056F7F4729
HistoryDec 20, 2019 - 8:47 a.m.

Security Bulletin: Incorrect permissions on restored files and directories on Windows using IBM Spectrum Protect Plus (CVE-2019-4652)

2019-12-2008:47:33
www.ibm.com
4

0.0004 Low

EPSS

Percentile

5.1%

JSON

Summary

File restore on Windows may not restore NTFS security permissions (ACLs).

Vulnerability Details

CVEID:CVE-2019-4652
**DESCRIPTION:**Incorrect permissions on restored files and directories on Windows using IBM Spectrum Protect Plus.
CVSS Base score: 5.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/170963 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N)

Affected Products and Versions

Affected Product(s) Version(s)
IBM Spectrum Protect Plus 10.1.0-10.1.4

Remediation/Fixes

Spectrum Protect
Plus Release|First Fixing
VRM Level |

APAR

|

Platform

| Link to Fix
—|—|—|—|—

10.1

|

10.1.4.254

| IT30696 | Linux |

http://www.ibm.com/support/docview.wss?uid=ibm10880861

Workarounds and Mitigations

None

Related

prion 1
cvelist 1
nvd 1
cve 1
symantec 1
prion
prion
Design/Logic Flaw
2019-11-12 16:15:00
cvelist
cvelist
CVE-2019-4652
2019-11-11 00:00:00
nvd
nvd
CVE-2019-4652
2019-11-12 16:15:10
cve
cve
CVE-2019-4652
2019-11-12 16:15:10
symantec
symantec
IBM Spectrum Protect Plus CVE-2019-4652 Insecure File Permission Vulnerability
2019-11-11 00:00:00

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for 2D0FC06FCC6F5468516954847DE60150729FD87294848F95D4F6D2056F7F4729
prion1cvelist1nvd1cve1symantec1