2 matches found
CVE-2020-4494
CVE-2020-4494 affects IBM Spectrum Protect Client (Linux/Windows) versions 8.1.7.0–8.1.9.1 and Spectrum Protect for Space Management (Linux) 8.1.7.0–8.1.9.1, with web UIs that could bypass authentication due to improper session validation, potentially granting access to unauthorized resources. IB...
Security Bulletin: IBM Spectrum Protect Client and IBM Spectrum Protect for Space Management web user interface vulnerable to authentication bypass and clickjacking (CVE-2020-4494, CVE-2020-4406)
Summary The web user interface provided by the IBM Spectrum Protect Client and IBM Spectrum Protect for Space Management is vulnerable to authentication bypass and a clickjacking attack. Vulnerability Details CVEID: CVE-2020-4494 DESCRIPTION: The IBM Spectrum Protect Backup-Archive Client web use...