Lucene search
+L

1258 matches found

vulnrichment
vulnrichment
added 2025/06/20 2:50 p.m.8 views

CVE-2025-3319 IBM Spectrum Protect Server authentication bypass

IBM Spectrum Protect Server 8.1 through 8.1.26 could allow attacker to bypass authentication due to improper session authentication which can result in access to unauthorized resources...

8.1CVSS8.1AI score0.00322EPSS
Exploits0References1
cvelist
cvelist
added 2025/06/20 2:50 p.m.28 views

CVE-2025-3319 IBM Spectrum Protect Server authentication bypass

IBM Spectrum Protect Server 8.1 through 8.1.26 could allow attacker to bypass authentication due to improper session authentication which can result in access to unauthorized resources...

8.1CVSS0.00322EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/06/20 12:0 a.m.10 views

PT-2025-26329 · Ibm · Ibm Spectrum Protect Server

Name of the Vulnerable Software and Affected Versions: IBM Spectrum Protect Server versions 8.1 through 8.1.26 Description: The issue is related to improper session authentication, which can allow an attacker to bypass authentication. This can result in access to unauthorized resources...

9.8CVSS6.1AI score0.00322EPSS
Exploits0References6
cnnvd
cnnvd
added 2025/06/20 12:0 a.m.6 views

IBM Spectrum Protect Server 访问控制错误漏洞

IBM Spectrum Protect Server is a spectrum protection system from International Business Machines IBM, Inc. provides comprehensive data resiliency for physical file servers, virtual environments, and a wide range of applications. An access control error vulnerability exists in IBM Spectrum Protect...

9.8CVSS6.2AI score0.00322EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/05/23 5:33 a.m.4 views

CVE-2023-28956

IBM Spectrum Protect Backup-Archive Client 8.1.0.0 through 8.1.17.2 may allow a local user to escalate their privileges due to improper access controls...

8.4CVSS6.7AI score0.00161EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 5:2 a.m.6 views

CVE-2023-27863

IBM Spectrum Protect Plus Server 10.1.13, under specific configurations, could allow an elevated user to obtain SMB credentials that may be used to access vSnap data stores. IBM X-Force ID: 249325...

4.9CVSS6.2AI score0.00573EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 4:56 a.m.11 views

CVE-2023-33832

IBM Spectrum Protect 8.1.0.0 through 8.1.17.0 could allow a local user to cause a denial of service due to due to improper time-of-check to time-of-use functionality. IBM X-Force ID: 256012...

6.2CVSS6.2AI score0.00131EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 5:6 p.m.8 views

CVE-2020-4497

IBM Spectrum Protect Plus 10.1.0 through 10.1.12 discloses sensitive information due to unencrypted data being used in the communication flow between Spectrum Protect Plus vSnap and its agents. An attacker could obtain information using main in the middle techniques. IBM X-Force ID: 182106...

6.8CVSS6AI score0.00387EPSS
Exploits0
ibm
ibm
added 2025/05/13 11:45 a.m.17 views

Security Bulletin: Vulnerabilities in Linux Kernel affect IBM Spectrum Protect Plus

Summary IBM Spectrum Protect Plus can be affected by vulnerabilities in Linux. Vulnerabilities include obtaining sensitive information, causing a denial of service condition, the elevation of privileges, remote execution of arbitrary code and bypassing security restrictions, as described by the...

7.5CVSS9.2AI score0.00614EPSS
Exploits2Affected Software1
ibm
ibm
added 2025/04/29 2:27 a.m.45 views

Security Bulletin: IBM Spectrum Protect Plus vulnerability discloses sensitive information due to unencrypted data in transit (CVE-2020-4497)

Summary IBM Spectrum Protect Plus does not encrypt data transfer between vSnap servers and application agents. This could allow an attacker to view senstive information in transit. Vulnerability Details CVEID:CVE-2020-4497 DESCRIPTION: IBM Spectrum Protect Plus discloses sensitive information due...

6.8CVSS5.5AI score0.00387EPSS
Exploits0Affected Software1
ibm
ibm
added 2025/04/15 2:37 a.m.82 views

Security Bulletin: Multiple vulnerabilities in IBM Spectrum Protect Plus Container backup and restore for Kubernetes and OpenShift

Summary IBM Spectrum Protect Plus Container backup and restore for OpenShift can be affected by vulnerabilities in Python, OpenSSH, Golang Go, Redis, urllib3, dnspython and gunicorn. Vulnerabilities include denial of service, cross-site scripting, gain elevated privileges on the system, allow a...

9.8CVSS9.9AI score0.41409EPSS
Exploits1Affected Software1
ibm
ibm
added 2025/04/10 7:49 a.m.31 views

Security Bulletin: Vulnerabilities in Linux Kernel, MongoDB, Python, Samba, OpenSSL and cURL libcurl affect IBM Spectrum Protect Plus

Summary IBM Spectrum Protect Plus can be affected by vulnerabilities in libcurl, MongoDB, Python, Samba, OpenSSL and Linux. Vulnerabilities include obtaining sensitive information, causing a denial of service condition, the elevation of privileges, remote execution of arbitrary code and bypassing...

8CVSS9.5AI score0.00979EPSS
Exploits0Affected Software1
ibm
ibm
added 2025/03/26 4:8 a.m.35 views

Security Bulletin: Vulnerabilities in Linux Kernel and Golang Go can affect IBM Spectrum Protect Plus

Summary IBM Spectrum Protect Plus can be affected by vulnerabilities in Golang Go and Linux kernel. Vulnerabilities include obtaining sensitive information, gaining elevated privileges, executing arbitrary commands, denial of service, and bypassing security restrictions, as described by the CVEs ...

9.8CVSS9.7AI score0.01837EPSS
Exploits0Affected Software1
ibm
ibm
added 2025/03/26 3:50 a.m.101 views

Security Bulletin: Vulnerabilities in Python, OpenSSH, Golang Go, Minio and Redis may affect IBM Spectrum Protect Plus Container backup and restore for Kubernetes and OpenShift

Summary IBM Spectrum Protect Plus Container backup and restore for Kubernetes and OpenShift can be affected by vulnerabilities in Python, OpenSSH, Golang Go, Minio and Redis. Vulnerabilities include denial of service, gain elevated privileges on the system, allow a remote attacker to execute...

9.8CVSS9.6AI score0.02453EPSS
Exploits2Affected Software1
ibm
ibm
added 2025/03/26 3:37 a.m.59 views

Security Bulletin: Vulnerabilities in Pypa Setuptools, Golang Go, OpenSSH, Minio and Certifi may affect IBM Spectrum Protect Plus Container backup and restore for Kubernetes and OpenShift

Summary IBM Spectrum Protect Plus Container backup and restore for Kubernetes and OpenShift can be affected by vulnerabilities in Pypa Setuptools, Golang Go, OpenSSH, Minio and Certifi. Vulnerabilities include denial of service, bypass security restrictions, HTTP request smuggling, spyware,...

7.5CVSS8.7AI score0.89955EPSS
Exploits14Affected Software1
ibm
ibm
added 2025/03/26 2:17 a.m.41 views

Security Bulletin: Directory traversal attack in IBM Spectrum Protect Plus Microsoft File Systems Backup and Restore (CVE-2022-40608)

Summary The IBM Spectrum Protect Plus Microsoft File Systems restore operation is vulnerable to a directory traversal attack which can result in gaining access to unauthorized files . Vulnerability Details CVEID:CVE-2022-40608 DESCRIPTION: IBM Spectrum Protect Plus Microsoft File Systems restore...

7.5CVSS7.4AI score0.01633EPSS
Exploits0Affected Software1
ibm
ibm
added 2025/03/26 2:17 a.m.43 views

Security Bulletin: Insecure handling of TLS certificates by IBM Spectrum Protect Plus (CVE-2022-40234)

Summary IBM Spectrum Protect Plus incorrectly handles TLS certificates which can result in an attacker obtaining private key information for the uploaded certificate. Vulnerability Details CVEID:CVE-2022-40234 DESCRIPTION: Versions of IBM Spectrum Protect Plus prior to 10.1.12 excluding 10.1.12...

5.9CVSS5.5AI score0.00498EPSS
Exploits0Affected Software1
ibm
ibm
added 2025/02/04 6:15 p.m.96 views

Security Bulletin: Vulnerabilities in Node.js, Golang Go, HTTP/2, NGINX, OpenSSH, Linux kernel might affect IBM Spectrum Protect Plus

Summary IBM Spectrum Protect Plus can be affected by vulnerabilities in Node.js, Golang Go, HTTP/2, NGINX, OpenSSH and Linux. Vulnerabilities include, causing a denial-of-service condition, the elevation of privileges, remote execution of arbitrary code, HTTP header injection, HTML injection,...

9.8CVSS10AI score0.91969EPSS
Exploits24Affected Software1
ibm
ibm
added 2024/09/24 5:5 a.m.35 views

Security Bulletin: Vulnerabilities in Node.js, AngularJS, Golang Go, libcURL, PostgreSQL, Linux kernel might affect IBM Spectrum Protect Plus

Summary IBM Spectrum Protect Plus can be affected by vulnerabilities in Node.js, AngularJS, Golang Go, libcURL, PostgreSQL, and Linux. Vulnerabilities include obtaining sensitive information, causing denial of service condition, heap-based buffer overflow, bypassing of security restrictions,...

9.8CVSS10AI score0.78483EPSS
Exploits6Affected Software1
ibm
ibm
added 2024/07/19 1:3 p.m.33 views

Security Bulletin: Vulnerability in Linux kernel may affect IBM Spectrum Protect Plus

Summary IBM Spectrum Protect Plus can be affected by vulnerability in Linux Kernel. Vulnerability includes elevation of privileges, as described by the CVE in the "Vulnerability Details" section. Vulnerability Details CVEID:CVE-2023-51043 DESCRIPTION: Linux Kernel could allow a local authenticate...

7CVSS7.1AI score0.00247EPSS
Exploits0Affected Software1
Rows per page
Query Builder