2 matches found
CVE-2021-20490
CVE-2021-20490 affects IBM Spectrum Protect Plus (versions 10.1.0–10.1.8). The root cause is insecure file permission settings due to not setting the sticky bit on certain directories, allowing a local user to cause a Denial of Service. Remediation is to apply the 10.1.8 patch (patch 1); after in...
Security Bulletin: IBM Spectrum Protect Plus has Insecure File Permissions due to not setting the Sticky Bit (CVE-2021-20490)
Summary IBM Spectrum Protect Plus has several directories that are failing security scans due to the sticky bit not being set on world-writable files. Vulnerability Details CVEID: CVE-2021-20490 DESCRIPTION: IBM Spectrum Protect Plus could allow a local user to cause a denial of service due to...