2 matches found
CVE-2020-4240
IBM Spectrum Protect Plus 10.1.0–10.1.5 is affected by a path traversal vulnerability that enables a remote attacker to overwrite or create arbitrary files via a specially crafted URL/request. The root cause cited across sources is improper validation of a user-supplied path in the Administrative...
Security Bulletin: Directory Traversal vulnerabilities in IBM Spectrum Protect Plus (CVE-2020-4240, CVE-2020-4209)
Summary IBM Spectrum Protect Plus could allow a remote attacker to traverse directories on the system which can result in the creation of arbitrary files on the system or files being overwritten. Vulnerability Details CVEID: CVE-2020-4240 DESCRIPTION: IBM Spectrum Protect Plus could allow a remot...