Spectrum Protect Security Vulnerabilities and Issues — Spectrum Protect CVE List

Lucene search

IbmSpectrum Protect

5 matches found

CVE•added 2021/04/16 4:15 p.m.•98 views

CVE-2021-20491

IBM Spectrum Protect Server 7.1 and 8.1 is subject to a stack-based buffer overflow caused by improper bounds checking during the parsing of commands. By issuing such a command with an improper parameter, an authorized administrator could overflow a buffer and cause the server to crash. IBM X-Force...

4.4CVSS4.9AI score0.00048EPSS

CVE•added 2017/10/05 5:29 p.m.•53 views

CVE-2017-1339

IBM Spectrum Protect 7.1 and 8.1 (formerly Tivoli Storage Manager) Server uses weak encryption for the password. A database administrator may be able to decrypt the IBM Spectrum protect client or administrator password which can result in information disclosure or a denial of service. IBM X-Force I...

4.4CVSS4.6AI score0.00021EPSS

CVE•added 2023/05/12 7:15 p.m.•52 views

CVE-2023-27863

IBM Spectrum Protect Plus Server 10.1.13, under specific configurations, could allow an elevated user to obtain SMB credentials that may be used to access vSnap data stores. IBM X-Force ID: 249325.

4.9CVSS4.6AI score0.00057EPSS

CVE•added 2018/11/02 3:29 p.m.•41 views

CVE-2018-1788

IBM Spectrum Protect Server 7.1 and 8.1 could disclose highly sensitive information via trace logs to a local privileged user. IBM X-Force ID: 148873.

4.4CVSS4.2AI score0.0009EPSS

CVE•added 2019/04/08 3:29 p.m.•36 views

CVE-2018-1882

In a certain atypical IBM Spectrum Protect 7.1 and 8.1 configurations, the node password could be displayed in plain text in the IBM Spectrum Protect client trace file. IBM X-Force ID: 151968.

4.7CVSS4.6AI score0.0003EPSS