2 matches found
CVE-2020-4477
CVE-2020-4477 affects IBM Spectrum Protect Plus, versions 10.1.0–10.1.5, where highly sensitive information is disclosed in plain text in the virgo log file. The underlying issue is exposure of credentials/data in logs, enabling information disclosure as described by IBM. Remediation: upgrade to ...
Security Bulletin: Information Disclosure via IBM Spectrum Protect Plus virgo log file (CVE-2020-4477)
Summary IBM Spectrum Protect Plus virgo log file may disclose sensitive information in plain text. Vulnerability Details CVEID: CVE-2020-4477 DESCRIPTION: IBM Spectrum Protect Plus discloses highly sensitive information in plain text in the virgo log file which could be used in further attacks...