2 matches found
CVE-2020-4783
CVE-2020-4783 affects IBM Spectrum Protect Plus versions 10.1.0–10.1.6. Root cause: failure to properly enable HTTP Strict Transport Security, enabling information disclosure via man-in-the-middle. Impact: remote attacker could obtain sensitive information over network (TLS/HTTPS). Affected produ...
Security Bulletin: IBM Spectrum Protect Plus allows use of TLS Version 1.1 protocols (CVE-2020-4783)
Summary IBM Spectrum Protect Plus should disable the use of TLS Version 1.1 protocols as this could allow a remote attacker to obtain sensitive information. Vulnerability Details CVEID: CVE-2020-4783 DESCRIPTION: IBM Spectrum Protect Plus could allow a remote attacker to obtain sensitive...