3 matches found
CVE-2020-4209
IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences /../ to create arbitrary files on the system. IBM X-Force ID: 175019...
CVE-2020-4209
CVE-2020-4209 affects IBM Spectrum Protect Plus 10.1.0–10.1.5. The vulnerability is a path traversal that allows a remote attacker to traverse directories and could result in creation of arbitrary files on the system via specially crafted URL requests containing dot-dot sequences (/../). Several ...
Security Bulletin: Directory Traversal vulnerabilities in IBM Spectrum Protect Plus (CVE-2020-4240, CVE-2020-4209)
Summary IBM Spectrum Protect Plus could allow a remote attacker to traverse directories on the system which can result in the creation of arbitrary files on the system or files being overwritten. Vulnerability Details CVEID: CVE-2020-4240 DESCRIPTION: IBM Spectrum Protect Plus could allow a remot...