Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:6 p.m.8 views

CVE-2020-4497

IBM Spectrum Protect Plus 10.1.0 through 10.1.12 discloses sensitive information due to unencrypted data being used in the communication flow between Spectrum Protect Plus vSnap and its agents. An attacker could obtain information using main in the middle techniques. IBM X-Force ID: 182106...

6.8CVSS6AI score0.00387EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/29 2:27 a.m.44 views

Security Bulletin: IBM Spectrum Protect Plus vulnerability discloses sensitive information due to unencrypted data in transit (CVE-2020-4497)

Summary IBM Spectrum Protect Plus does not encrypt data transfer between vSnap servers and application agents. This could allow an attacker to view senstive information in transit. Vulnerability Details CVEID:CVE-2020-4497 DESCRIPTION: IBM Spectrum Protect Plus discloses sensitive information due...

6.8CVSS5.5AI score0.00387EPSS
Exploits0Affected Software1
OSV
OSV
added 2022/12/14 10:15 p.m.3 views

CVE-2020-4497

IBM Spectrum Protect Plus 10.1.0 through 10.1.12 discloses sensitive information due to unencrypted data being used in the communication flow between Spectrum Protect Plus vSnap and its agents. An attacker could obtain information using main in the middle techniques. IBM X-Force ID: 182106...

5.9CVSS5.8AI score0.00387EPSS
Exploits0References2
CVE
CVE
added 2022/12/14 9:50 p.m.67 views

CVE-2020-4497

CVE-2020-4497 affects IBM Spectrum Protect Plus 10.1.0–10.1.12. The root cause is unencrypted data in the communication flow between vSnap and its application agents, enabling information disclosure via man-in-the-middle techniques. IBM documents a fix in version 10.1.13 that adds transport encry...

6.8CVSS5.5AI score0.00387EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder