Spectrum Protect Plus Security Vulnerabilities and Issues — Spectrum Protect Plus CVE List

Lucene search

IbmSpectrum Protect Plus

6 matches found

CVE•added 2020/03/31 3:15 p.m.•51 views

CVE-2020-4206

IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow a remote attacker to execute arbitrary commands on the system in the context of root user, caused by improper validation of user-supplied input. IBM X-Force ID: 174966.

9CVSS8.7AI score0.05423EPSS

CVE•added 2020/03/31 3:15 p.m.•51 views

CVE-2020-4240

IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request to overwrite or create arbitrary files on the system. IBM X-Force ID: 175417.

6.5CVSS6.3AI score0.0042EPSS

CVE•added 2020/03/31 3:15 p.m.•49 views

CVE-2020-4208

IBM Spectrum Protect Plus 10.1.0 through 10.1.5 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 174975.

9.8CVSS9AI score0.00026EPSS

CVE•added 2020/03/31 3:15 p.m.•44 views

CVE-2020-4241

IBM Spectrum Scale and IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system. IBM X-For...

9CVSS8.6AI score0.0913EPSS

CVE•added 2020/03/31 3:15 p.m.•41 views

CVE-2020-4242

9CVSS8.6AI score0.03831EPSS

CVE•added 2020/03/31 3:15 p.m.•40 views

CVE-2020-4214

IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow a remote attacker to arbitrary delete a directory caused by improper validation of user-supplied input. IBM X-Force ID: 175026.

7.5CVSS7.4AI score0.00104EPSS