Spectrum Control Security Vulnerabilities and Issues — Spectrum Control CVE List

Lucene search

IbmSpectrum Control

5 matches found

CVE•added 2019/05/29 3:29 p.m.•55 views

CVE-2019-4138

IBM Tivoli Storage Productivity Center 5.2.13 through 5.3.0.1 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle ...

5.9CVSS5.5AI score0.00286EPSS

CVE•added 2017/02/01 8:59 p.m.•37 views

CVE-2016-8943

IBM Tivoli Storage Productivity Center is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

5.4CVSS5.6AI score0.00227EPSS

CVE•added 2016/09/26 4:59 a.m.•31 views

CVE-2016-5943

IBM Spectrum Control (formerly Tivoli Storage Productivity Center) 5.2.x before 5.2.11 allows remote authenticated users to bypass intended access restrictions, and read task details or edit properties, via unspecified vectors.

5.5CVSS5.2AI score0.00109EPSS

CVE•added 2016/09/26 4:59 a.m.•31 views

CVE-2016-5944

Cross-site scripting (XSS) vulnerability in the Web UI in IBM Spectrum Control (formerly Tivoli Storage Productivity Center) 5.2.x before 5.2.11 allows remote authenticated users to inject arbitrary web script or HTML via an embedded string.

5.4CVSS5.2AI score0.00197EPSS

CVE•added 2016/09/26 4:59 a.m.•28 views

CVE-2016-5947

IBM Spectrum Control (formerly Tivoli Storage Productivity Center) 5.2.x before 5.2.11 allows remote authenticated users to conduct clickjacking attacks via a crafted web site.

5.7CVSS5.4AI score0.00157EPSS