Lucene search
K

11 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2020/06/17 6:4 p.m.26 views

Security Bulletin: Multiple vulnerabilities in IBM Spectrum Protect Plus (CVE-2020-4469, CVE-2020-4471, CVE-2020-4470)

Summary Multiple vulnerabilities in IBM Spectrum Protect Plus could allow a remote attacker to executive arbitrary code on the system, cause a denial or service, or hijack DNS sessions. Vulnerability Details CVEID: CVE-2020-4469 DESCRIPTION: IBM Spectrum Protect Plus could allow a remote attacker...

10CVSS1.9AI score0.71094EPSS
Exploits0Affected Software1
NVD
NVD
added 2020/06/15 2:15 p.m.22 views

CVE-2020-4470

IBM Spectrum Protect Plus 10.1.0 through 10.1.5 Administrative Console could allow an authenticated attacker to upload arbitrary files which could be execute arbitrary code on the vulnerable server. IBM X-Force ID: 181725...

8CVSS0.01911EPSS
Exploits0References3
NVD
NVD
added 2020/06/15 2:15 p.m.15 views

CVE-2020-4471

IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow an unauthenticated attacker to cause a denial of service or hijack DNS sessions by send a specially crafted HTTP command to the remote server. IBM X-Force ID: 181726...

6.5CVSS0.02653EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2020/06/15 12:36 a.m.45 views

Security Bulletin: Denial of Service vulnerability in Linux Kernel affects IBM Spectrum Protect Plus (CVE-2020-12114)

Summary There is a denial of service vulnerability in the Linux Kernel that affects IBM Spectrum Protect Plus. Vulnerability Details CVEID: CVE-2020-12114 DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by a pivotroot race condition in fs/namespace.c. By corrupting a...

4.7CVSS1.9AI score0.00423EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/06/12 8:16 p.m.27 views

Security Bulletin: Vulnerability in MongoDB affects IBM Spectrum Protect Plus (CVE-2019-2389)

Summary A denial of service vulnerability in MongoDB affects IBM Spectrum Protect Plus. Vulnerability Details CVEID: CVE-2019-2389 DESCRIPTION: MongoDB Server is vulnerable to a denial of service, caused by a flaw in the SysV init scripts. By inserting a specially-crafted PID file, a remote...

5.3CVSS1.9AI score0.00305EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2020/04/01 12:0 a.m.4 views

IBM Spectrum Protect Plus Path Traversal Vulnerability

IBM Spectrum Protect Plus is a suite of data protection platforms from IBM USA. The platform provides organizations with a single point of control and management and supports backup and recovery for virtual, physical and cloud environments of all sizes. A path traversal vulnerability exists in IB...

6.5CVSS6.7AI score0.01919EPSS
Exploits0References1
CNVD
CNVD
added 2020/04/01 12:0 a.m.2 views

IBM Spectrum Protect Plus Authentication Bypass Vulnerability

IBM Spectrum Protect Plus is a suite of data protection platforms from IBM USA. The platform provides organizations with a single point of control and management and supports backup and recovery for virtual, physical and cloud environments of all sizes. A security vulnerability exists in IBM...

9.8CVSS6.5AI score0.66298EPSS
Exploits0References1
NVD
NVD
added 2020/03/31 3:15 p.m.28 views

CVE-2020-4208

IBM Spectrum Protect Plus 10.1.0 through 10.1.5 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 174975...

9.8CVSS8AI score0.01755EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2020/03/30 9:54 p.m.20 views

Security Bulletin: Directory Traversal vulnerabilities in IBM Spectrum Protect Plus (CVE-2020-4240, CVE-2020-4209)

Summary IBM Spectrum Protect Plus could allow a remote attacker to traverse directories on the system which can result in the creation of arbitrary files on the system or files being overwritten. Vulnerability Details CVEID: CVE-2020-4240 DESCRIPTION: IBM Spectrum Protect Plus could allow a remot...

6.5CVSS2AI score0.01919EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2020/02/24 12:0 a.m.3 views

IBM Spectrum Protect Plus Command Injection Vulnerability

IBM Spectrum Protect Plus is a suite of data protection platforms from IBM USA. The platform provides organizations with a single point of control and management and supports backup and recovery for virtual, physical and cloud environments of all sizes. A command injection vulnerability exists in...

10CVSS7.8AI score0.71094EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2020/02/22 12:27 a.m.35 views

Security Bulletin: Vulnerabilities in Samba affect IBM Spectrum Protect Plus (CVE-2019-14833, CVE-2019-14847, CVE-2019-10218)

Summary Security vulnerabilities in Samba affect IBM Spectrum Protect Plus. Vulnerability Details CVEID: CVE-2019-14833 DESCRIPTION: A flaw was found in Samba, all versions starting samba 4.5.0 before samba 4.9.15, samba 4.10.10, samba 4.11.2, in the way it handles a user password change or a new...

6.5CVSS0.7AI score0.03515EPSS
Exploits1Affected Software1
Rows per page
Query Builder