Known Vulnerabilities for Spectrum Protect Plus by Ibm
Listed below are 10 of the newest known vulnerabilities associated with "Spectrum Protect Plus" by "Ibm".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-40608 json | IBM Spectrum Protect Plus 10.1.6 through 10.1.11 Microsoft File Systems restore operation can download any file on the target... | 7.5 - HIGH | 2022-09-19 | 2022-09-21 |
| CVE-2022-40234 json | Versions of IBM Spectrum Protect Plus prior to 10.1.12 (excluding 10.1.12) include the private key information for a certific... | 5.9 - MEDIUM | 2022-09-19 | 2022-09-21 |
| CVE-2022-22396 json | Credentials are printed in clear text in the IBM Spectrum Protect Plus 10.1.0.0 through 10.1.9.3 virgo log file in certain ca... | 7.5 - HIGH | 2022-06-06 | 2022-06-14 |
| CVE-2022-22354 json | IBM Spectrum Protect Plus 10.1.0.0 through 10.1.9.2 and IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.14.3 do not lim... | 7.5 - HIGH | 2022-03-14 | 2022-03-22 |
| CVE-2021-39063 json | IBM Spectrum Protect Plus 10.1.0.0 through 10.1.8.x uses Cross-Origin Resource Sharing (CORS) which could allow an attacker t... | 9.1 - CRITICAL | 2021-12-13 | 2021-12-15 |
| CVE-2021-39057 json | IBM Spectrum Protect Plus 10.1.0.0 through 10.1.8.x is vulnerable to server-side request forgery (SSRF). This may allow an au... | 8.1 - HIGH | 2021-12-13 | 2021-12-15 |
| CVE-2021-29694 json | IBM Spectrum Protect Plus 10.1.0 through 10.1.7 uses weaker than expected cryptographic algorithms that could allow an attack... | 7.5 - HIGH | 2021-04-26 | 2022-07-12 |
| CVE-2021-20536 json | IBM Spectrum Protect Plus File Systems Agent 10.1.6 and 10.1.7 stores potentially sensitive information in log files that cou... | 6.2 - MEDIUM | 2021-04-26 | 2021-04-30 |
| CVE-2021-20490 json | IBM Spectrum Protect Plus 10.1.0 through 10.1.8 could allow a local user to cause a denial of service due to insecure file pe... | 5.5 - MEDIUM | 2021-06-29 | 2021-06-30 |
| CVE-2021-20432 json | IBM Spectrum Protect Plus 10.1.0 through 10.1.7 uses Cross-Origin Resource Sharing (CORS) which could allow an attacker to ca... | 6.5 - MEDIUM | 2021-04-26 | 2021-04-30 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Ibm | Spectrum Protect Plus | 10.1.7 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.6 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.5.2199 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.5.2181 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.5.2153 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.5.2130 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.5 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.4.277 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.4.254 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.4.222 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.4.179 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.4.145 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.4 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.3.286 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.3.236 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.3 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.3 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.3 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.2.350 | |||
| Application | Ibm | Spectrum Protect Plus | 10.1.2.303 |