Lucene search
+L

97 matches found

CNVD
CNVD
added 2022/06/14 12:0 a.m.46 views

IBM Spectrum Copy Data Management反向钓鱼攻击漏洞

IBM Spectrum Copy Data Management, an IBM company that modernizes, streamlines and automates data center copy management processes, is vulnerable to a phishing attack in IBM Spectrum Copy Data Management versions 2.2.0.0 through 2.2.15.0. The vulnerability stems from allowing pages linked to from...

3.5CVSS3AI score0.00541EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2022/06/14 12:0 a.m.47 views

IBM Spectrum Copy Data Management跨站请求伪造漏洞

IBM Spectrum Copy Data Management, an IBM company that modernizes, simplifies and automates data center copy management processes, is vulnerable to cross-site request forgery in IBM Spectrum Copy Data Management versions 2.2.0.0 through 2.2.15.0. An attacker could exploit the vulnerability to...

6.8CVSS4.1AI score0.00319EPSS
Exploits0Affected Software1
NVD
NVD
added 2022/06/10 4:15 p.m.20 views

CVE-2022-31769

IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 could allow a remote attacker to view product configuration information stored in PostgreSQL, which could be used in further attacks against the system. IBM X-Force ID: 228219...

5.3CVSS0.01127EPSS
Exploits0References2
NVD
NVD
added 2022/06/10 4:15 p.m.20 views

CVE-2022-30611

IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using some fields of the form in the portal UI to inject malicious script into a Web page whic...

5.4CVSS0.00618EPSS
Exploits0References2
NVD
NVD
added 2022/06/10 4:15 p.m.16 views

CVE-2022-30610

IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 is vulnerable to reverse tabnabbing where it could allow a page linked to from within IBM Spectrum Copy Data Management to rewrite it. An administrator could enter a link to a malicious URL that another administrator could then click. Onc...

4.5CVSS0.00541EPSS
Exploits0References2
NVD
NVD
added 2022/06/10 4:15 p.m.21 views

CVE-2022-22479

IBM Spectrum Copy Data Management 2.2.0.0through 2.2.15.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 225887...

8.8CVSS0.00319EPSS
Exploits0References2
NVD
NVD
added 2022/06/10 4:15 p.m.26 views

CVE-2022-22426

IBM Spectrum Copy Data Management Admin 2.2.0.0 through 2.2.15.0 could allow a local attacker to bypass authentication restrictions, caused by the lack of proper session management. An attacker could exploit this vulnerability to bypass authentication and gain unauthorized access to the Spectrum...

3.3CVSS0.0023EPSS
Exploits0References2
Prion
Prion
added 2022/06/10 4:15 p.m.11 views

Code injection

IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 is vulnerable to reverse tabnabbing where it could allow a page linked to from within IBM Spectrum Copy Data Management to rewrite it. An administrator could enter a link to a malicious URL that another administrator could then click. Onc...

3.5CVSS5.3AI score0.00541EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/06/10 4:15 p.m.20 views

Code injection

IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 could allow a remote attacker to view product configuration information stored in PostgreSQL, which could be used in further attacks against the system. IBM X-Force ID: 228219...

5CVSS5.5AI score0.01127EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/06/10 4:15 p.m.18 views

Authentication flaw

IBM Spectrum Copy Data Management Admin 2.2.0.0 through 2.2.15.0 could allow a local attacker to bypass authentication restrictions, caused by the lack of proper session management. An attacker could exploit this vulnerability to bypass authentication and gain unauthorized access to the Spectrum...

2.1CVSS5.1AI score0.0023EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/06/10 4:0 p.m.22 views

CVE-2022-31769

IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 could allow a remote attacker to view product configuration information stored in PostgreSQL, which could be used in further attacks against the system. IBM X-Force ID: 228219...

5.3CVSS5AI score0.01127EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/06/10 4:0 p.m.24 views

CVE-2022-30611

IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using some fields of the form in the portal UI to inject malicious script into a Web page whic...

5.4CVSS5.5AI score0.00618EPSS
Exploits0References2
CVE
CVE
added 2022/06/10 4:0 p.m.77 views

CVE-2022-30611

CVE-2022-30611 affects IBM Spectrum Copy Data Management versions 2.2.0.0–2.2.15.0. The vulnerability is a cross-site scripting flaw caused by improper validation of user-supplied input, enabling a remote attacker to inject malicious script into a page viewed in a victim’s browser within the host...

5.4CVSS5.3AI score0.00618EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/06/10 4:0 p.m.26 views

CVE-2022-30610

IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 is vulnerable to reverse tabnabbing where it could allow a page linked to from within IBM Spectrum Copy Data Management to rewrite it. An administrator could enter a link to a malicious URL that another administrator could then click. Onc...

4.4CVSS4.7AI score0.00541EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/06/10 4:0 p.m.29 views

CVE-2022-22479

IBM Spectrum Copy Data Management 2.2.0.0through 2.2.15.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 225887...

5CVSS8.4AI score0.00319EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/06/10 12:0 a.m.6 views

PT-2022-20916 · Ibm · Ibm Spectrum Copy Data Management

Name of the Vulnerable Software and Affected Versions: IBM Spectrum Copy Data Management versions 2.2.0.0 through 2.2.15.0 Description: The issue allows a remote attacker to view product configuration information stored in PostgreSQL, which could be used in further attacks against the system...

5.3CVSS5.1AI score0.01127EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2022/06/09 5:57 p.m.35 views

Security Bulletin: IBM Spectrum Copy Data Management is vulnerable to bypassing authentication, information disclosure, XSS, CSRF, and reverse tabnabbing

Summary IBM Spectrum Copy Data Management is vulnerable to bypassing authentication restrictions, information disclosure due to an unnecessary open port, cross-site scripting XSS, cross-site request forgery CSRF, and reverse tabnabbing. Vulnerability Details CVEID: CVE-2022-22426 DESCRIPTION: IBM...

8.8CVSS0.9AI score0.01127EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/06/09 5:51 p.m.100 views

Security Bulletin: Vulnerabilities in the Linux Kernel affect IBM Spectrum Copy Data Management

Summary Linux Kernel vulnerabilities, such as obtaining sensitive information, bypassing security restrictions, denial of service, elevation of privileges, and execution of arbitrary code on the system, may affect IBM Spectrum Copy Data Management. Vulnerability Details CVEID: CVE-2022-0850...

7.8CVSS8.6AI score0.06846EPSS
Exploits6Affected Software1
CNVD
CNVD
added 2022/03/16 12:0 a.m.16 views

IBM Spectrum Copy Data Management HOST头注入漏洞

IBM Spectrum Copy Data Management is an IBM company that modernizes, streamlines and automates data center copy management processes. IBM Spectrum Copy Data Management has security vulnerabilities that can be exploited by attackers to conduct a variety of attacks on vulnerable systems, including...

6.1CVSS2AI score0.00624EPSS
Exploits0References1
CNVD
CNVD
added 2022/03/16 12:0 a.m.39 views

IBM Spectrum Copy Data Management has an unspecified vulnerability

IBM Spectrum Copy Data Management is an International Business Machines Corporation IBM implementation to modernize, simplify, and automate data center copy management processes. IBM Spectrum Copy Data Management has a security vulnerability that is caused by improperly entered application server...

6.5CVSS2.7AI score0.00838EPSS
Exploits0References1
Rows per page
Query Builder