Spectrum Control@5.2.10.1 Security Vulnerabilities and Issues — Spectrum Control@5.2.10.1 CVE List

Lucene search

IbmSpectrum Control5.2.10.1

5 matches found

CVE•added 2016/09/26 4:59 a.m.•34 views

CVE-2016-5946

Directory traversal vulnerability in IBM Spectrum Control (formerly Tivoli Storage Productivity Center) 5.2.x before 5.2.11 allows remote authenticated users to read arbitrary files via a .. (dot dot) in a URL.

6.5CVSS5.9AI score0.00281EPSS

CVE•added 2016/09/26 4:59 a.m.•31 views

CVE-2016-5943

IBM Spectrum Control (formerly Tivoli Storage Productivity Center) 5.2.x before 5.2.11 allows remote authenticated users to bypass intended access restrictions, and read task details or edit properties, via unspecified vectors.

5.5CVSS5.2AI score0.00109EPSS

CVE•added 2016/09/26 4:59 a.m.•31 views

CVE-2016-5944

Cross-site scripting (XSS) vulnerability in the Web UI in IBM Spectrum Control (formerly Tivoli Storage Productivity Center) 5.2.x before 5.2.11 allows remote authenticated users to inject arbitrary web script or HTML via an embedded string.

5.4CVSS5.2AI score0.00197EPSS

CVE•added 2016/09/26 4:59 a.m.•28 views

CVE-2016-5945

IBM Spectrum Control (formerly Tivoli Storage Productivity Center) 5.2.x before 5.2.11 allows remote authenticated users to upload non-executable files via a crafted HTTP request.

4.3CVSS4.7AI score0.00077EPSS

CVE•added 2016/09/26 4:59 a.m.•28 views

CVE-2016-5947

IBM Spectrum Control (formerly Tivoli Storage Productivity Center) 5.2.x before 5.2.11 allows remote authenticated users to conduct clickjacking attacks via a crafted web site.

5.7CVSS5.4AI score0.00157EPSS