Spectrum Protect Server@* Security Vulnerabilities and Issues — Spectrum Protect Server@* CVE List

Lucene search

IbmSpectrum Protect Server*

5 matches found

CVE•added 2022/06/30 5:15 p.m.•68 views

CVE-2022-22496

While a user account for the IBM Spectrum Protect Server 8.1.0.000 through 8.1.14 is being established, it may be configured to use SESSIONSECURITY=TRANSITIONAL. While in this mode, it may be susceptible to an offline dictionary attack. IBM X-Force ID: 226942.

6.5CVSS6.2AI score0.00042EPSS

CVE•added 2022/06/30 5:15 p.m.•63 views

CVE-2022-22487

An IBM Spectrum Protect storage agent could allow a remote attacker to perform a brute force attack by allowing unlimited attempts to login to the storage agent without locking the administrative ID. A remote attacker could exploit this vulnerability using brute force techniques to gain unauthorize...

9.8CVSS9.1AI score0.00085EPSS

CVE•added 2018/11/02 3:29 p.m.•41 views

CVE-2018-1788

IBM Spectrum Protect Server 7.1 and 8.1 could disclose highly sensitive information via trace logs to a local privileged user. IBM X-Force ID: 148873.

4.4CVSS4.2AI score0.0009EPSS

CVE•added 2020/08/28 3:15 p.m.•31 views

CVE-2020-4591

IBM Spectrum Protect Server 8.1.0.000 through 8.1.10.000 could disclose sensitive information in nondefault settings due to occasionally not encrypting the second chunk of an object in an encrypted container pool. IBM X-Force ID: 184746.

3.3CVSS3.6AI score0.00023EPSS

CVE•added 2025/06/20 3:15 p.m.•15 views

CVE-2025-3319

IBM Spectrum Protect Server 8.1 through 8.1.26 could allow attacker to bypass authentication due to improper session authentication which can result in access to unauthorized resources.

8.1CVSS8.1AI score0.00076EPSS