2 matches found
CVE-2020-4496
IBM Spectrum Protect Plus (IBM Spectrum Protect Plus server connected to a workload agent) is affected by CVE-2020-4496: MITM due to improper certificate validation in versions 10.1.0.0–10.1.8.x. The IBM security bulletin lists a fix in Spectrum Protect Plus 10.1.9 (Linux) and notes remediation/w...
Security Bulletin: IBM Spectrum Protect Plus is vulnerable to SSRF, MITM, and CORS attacks
Summary IBM Spectrum Protect Plus is vulnerable to Server-Side Request Forgery SSRF, Man-in-the-Middle MITM attack, and Cross-Origin Resource Sharing CORS attack. Vulnerability Details CVEID: CVE-2021-39057 DESCRIPTION: IBM Spectrum Protect Plus is vulnerable to server-side request forgery SSRF...