4 matches found
EUVD-2020-25950
Malware in sbrugna...
Design/Logic Flaw
IBM Spectrum Protect Plus 10.1.0 through 10.1.6 Administrative Console could allow an authenticated attacker to upload arbitrary files which could be execute arbitrary code on the vulnerable server. This vulnerability is due to an incomplete fix for CVE-2020-4470. IBM X-Force ID: 187188...
Security Bulletin: Multiple vulnerabilities in IBM Spectrum Protect Plus (CVE-2020-4469, CVE-2020-4471, CVE-2020-4470)
Summary Multiple vulnerabilities in IBM Spectrum Protect Plus could allow a remote attacker to executive arbitrary code on the system, cause a denial or service, or hijack DNS sessions. Vulnerability Details CVEID: CVE-2020-4469 DESCRIPTION: IBM Spectrum Protect Plus could allow a remote attacker...
CVE-2020-4470
CVE-2020-4470 affects IBM Spectrum Protect Plus Administrative Console (versions 10.1.0–10.1.5). The root cause is an incomplete fix that allowed an authenticated attacker to upload arbitrary files, which could be exploited to execute code on the vulnerable server. Public sources describe a follo...