97 matches found
IBM Spectrum Copy Data Management反向钓鱼攻击漏洞
IBM Spectrum Copy Data Management, an IBM company that modernizes, streamlines and automates data center copy management processes, is vulnerable to a phishing attack in IBM Spectrum Copy Data Management versions 2.2.0.0 through 2.2.15.0. The vulnerability stems from allowing pages linked to from...
IBM Spectrum Copy Data Management跨站请求伪造漏洞
IBM Spectrum Copy Data Management, an IBM company that modernizes, simplifies and automates data center copy management processes, is vulnerable to cross-site request forgery in IBM Spectrum Copy Data Management versions 2.2.0.0 through 2.2.15.0. An attacker could exploit the vulnerability to...
CVE-2022-31769
IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 could allow a remote attacker to view product configuration information stored in PostgreSQL, which could be used in further attacks against the system. IBM X-Force ID: 228219...
CVE-2022-30611
IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using some fields of the form in the portal UI to inject malicious script into a Web page whic...
CVE-2022-30610
IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 is vulnerable to reverse tabnabbing where it could allow a page linked to from within IBM Spectrum Copy Data Management to rewrite it. An administrator could enter a link to a malicious URL that another administrator could then click. Onc...
CVE-2022-22479
IBM Spectrum Copy Data Management 2.2.0.0through 2.2.15.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 225887...
CVE-2022-22426
IBM Spectrum Copy Data Management Admin 2.2.0.0 through 2.2.15.0 could allow a local attacker to bypass authentication restrictions, caused by the lack of proper session management. An attacker could exploit this vulnerability to bypass authentication and gain unauthorized access to the Spectrum...
Code injection
IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 is vulnerable to reverse tabnabbing where it could allow a page linked to from within IBM Spectrum Copy Data Management to rewrite it. An administrator could enter a link to a malicious URL that another administrator could then click. Onc...
Code injection
IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 could allow a remote attacker to view product configuration information stored in PostgreSQL, which could be used in further attacks against the system. IBM X-Force ID: 228219...
Authentication flaw
IBM Spectrum Copy Data Management Admin 2.2.0.0 through 2.2.15.0 could allow a local attacker to bypass authentication restrictions, caused by the lack of proper session management. An attacker could exploit this vulnerability to bypass authentication and gain unauthorized access to the Spectrum...
CVE-2022-31769
IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 could allow a remote attacker to view product configuration information stored in PostgreSQL, which could be used in further attacks against the system. IBM X-Force ID: 228219...
CVE-2022-30611
IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using some fields of the form in the portal UI to inject malicious script into a Web page whic...
CVE-2022-30611
CVE-2022-30611 affects IBM Spectrum Copy Data Management versions 2.2.0.0–2.2.15.0. The vulnerability is a cross-site scripting flaw caused by improper validation of user-supplied input, enabling a remote attacker to inject malicious script into a page viewed in a victim’s browser within the host...
CVE-2022-30610
IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 is vulnerable to reverse tabnabbing where it could allow a page linked to from within IBM Spectrum Copy Data Management to rewrite it. An administrator could enter a link to a malicious URL that another administrator could then click. Onc...
CVE-2022-22479
IBM Spectrum Copy Data Management 2.2.0.0through 2.2.15.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 225887...
PT-2022-20916 · Ibm · Ibm Spectrum Copy Data Management
Name of the Vulnerable Software and Affected Versions: IBM Spectrum Copy Data Management versions 2.2.0.0 through 2.2.15.0 Description: The issue allows a remote attacker to view product configuration information stored in PostgreSQL, which could be used in further attacks against the system...
Security Bulletin: IBM Spectrum Copy Data Management is vulnerable to bypassing authentication, information disclosure, XSS, CSRF, and reverse tabnabbing
Summary IBM Spectrum Copy Data Management is vulnerable to bypassing authentication restrictions, information disclosure due to an unnecessary open port, cross-site scripting XSS, cross-site request forgery CSRF, and reverse tabnabbing. Vulnerability Details CVEID: CVE-2022-22426 DESCRIPTION: IBM...
Security Bulletin: Vulnerabilities in the Linux Kernel affect IBM Spectrum Copy Data Management
Summary Linux Kernel vulnerabilities, such as obtaining sensitive information, bypassing security restrictions, denial of service, elevation of privileges, and execution of arbitrary code on the system, may affect IBM Spectrum Copy Data Management. Vulnerability Details CVEID: CVE-2022-0850...
IBM Spectrum Copy Data Management HOST头注入漏洞
IBM Spectrum Copy Data Management is an IBM company that modernizes, streamlines and automates data center copy management processes. IBM Spectrum Copy Data Management has security vulnerabilities that can be exploited by attackers to conduct a variety of attacks on vulnerable systems, including...
IBM Spectrum Copy Data Management has an unspecified vulnerability
IBM Spectrum Copy Data Management is an International Business Machines Corporation IBM implementation to modernize, simplify, and automate data center copy management processes. IBM Spectrum Copy Data Management has a security vulnerability that is caused by improperly entered application server...