2 matches found
CVE-2020-4212
IBM Spectrum Protect Plus 10.1.0 and 10.1.5 are affected by a command injection vulnerability in the Administrative Console Framework service when parsing the hfpackage parameter, leading to remote code execution with root privileges. Exploitation is possible via specially crafted HTTP commands w...
Security Bulletin: Command injection vulnerabilities in IBM Spectrum Protect Plus (CVE-2020-4210, CVE-2020-4213, CVE-2020-4222, CVE-2020-4212, CVE-2020-4211)
Summary Command injection vulnerabilities in IBM Spectrum Protect Plus could allow a remote attacker to execute arbitrary code on the system. Vulnerability Details CVEID: CVE-2020-4210 DESCRIPTION: IBM Spectrum Protect Plus could allow a remote attacker to execute arbitrary code on the system. By...