Ibm Spectrum Protect Backup-Archive Client vulnerabilities
8 known vulnerabilities affecting ibm/spectrum_protect_backup-archive_client.
Total CVEs
8
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM6
Vulnerabilities
Page 1 of 1
CVE-2023-28956HIGHCVSS 7.8≥ 8.1.0.0, ≤ 8.1.17.22023-06-22
CVE-2023-28956 [HIGH] CWE-266 CVE-2023-28956: IBM Spectrum Protect Backup-Archive Client 8.1.0.0 through 8.1.17.2 may allow a local user to escala
IBM Spectrum Protect Backup-Archive Client 8.1.0.0 through 8.1.17.2 may allow a local user to escalate their privileges due to improper access controls.
cvelistv5nvd
CVE-2021-39048MEDIUMCVSS 5.5≥ 8.1.0.0, ≤ 8.1.12.0≥ 7.1.0.0, ≤ 7.1.8.102021-12-13
CVE-2021-39048 [MEDIUM] CWE-787 CVE-2021-39048: IBM Spectrum Protect Client 7.1 and 8.1 is vulnerable to a stack based buffer overflow, caused by im
IBM Spectrum Protect Client 7.1 and 8.1 is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A local attacker could exploit this vulnerability and cause a denial of service. IBM X-Force ID: 214438.
nvd
CVE-2021-20532HIGHCVSS 7.8≥ 8.1.0.0, ≤ 8.1.11.02021-04-26
CVE-2021-20532 [HIGH] CWE-276 CVE-2021-20532: IBM Spectrum Protect Client 8.1.0.0 through 8.1.11.0 could allow a local user to escalate their priv
IBM Spectrum Protect Client 8.1.0.0 through 8.1.11.0 could allow a local user to escalate their privileges to take full control of the system due to insecure directory permissions. IBM X-Force ID: 198811.
nvd
CVE-2018-2025MEDIUMCVSS 4.4v7.1.0.0v8.1.0.0+2 more2019-11-25
CVE-2018-2025 [MEDIUM] CWE-276 CVE-2018-2025: IBM Spectrum Protect Backup-Archive Client and IBM Spectrum Protect for Virtual Environments 7.1 and
IBM Spectrum Protect Backup-Archive Client and IBM Spectrum Protect for Virtual Environments 7.1 and 8.1 creates directories/files in the CIT sub directory that are read/writable by everyone. IBM X-Force ID: 155551.
cvelistv5nvd
CVE-2019-4406MEDIUMCVSS 4.4≥ 7.1.0.0, ≤ 7.1.8.6≥ 8.1.0.0, ≤ 8.1.8.0+4 more2019-11-25
CVE-2019-4406 [MEDIUM] CVE-2019-4406: IBM Spectrum Protect Backup-Archive Client 7.1 and 8.1 may be vulnerable to a denial of service atta
IBM Spectrum Protect Backup-Archive Client 7.1 and 8.1 may be vulnerable to a denial of service attack due to a timing issue between client and server TCP/IP communications. IBM X-Force ID: 162477.
cvelistv5nvd
CVE-2018-1787MEDIUMCVSS 5.5≥ 7.1.0.0, ≤ 7.1.8.4≥ 8.1.0.0, ≤ 8.1.6.12019-04-08
CVE-2018-1787 [MEDIUM] CWE-732 CVE-2018-1787: IBM Spectrum Protect 7.1 and 8.1 is affected by a password exposure vulnerability caused by insecure
IBM Spectrum Protect 7.1 and 8.1 is affected by a password exposure vulnerability caused by insecure file permissions. IBM X-Force ID: 148872.
nvd
CVE-2018-1853MEDIUMCVSS 6.1≥ 7.1.0.0, ≤ 7.1.8.4≥ 8.1.0.0, ≤ 8.1.6.12019-04-08
CVE-2018-1853 [MEDIUM] CWE-1021 CVE-2018-1853: IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 and 8.1) could allow a remote attacker to hijac
IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 and 8.1) could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 1
nvd
CVE-2018-1882MEDIUMCVSS 4.7≥ 7.1.0.0, ≤ 7.1.8.4≥ 8.1.0.0, ≤ 8.1.6.12019-04-08
CVE-2018-1882 [MEDIUM] CWE-312 CVE-2018-1882: In a certain atypical IBM Spectrum Protect 7.1 and 8.1 configurations, the node password could be di
In a certain atypical IBM Spectrum Protect 7.1 and 8.1 configurations, the node password could be displayed in plain text in the IBM Spectrum Protect client trace file. IBM X-Force ID: 151968.
nvd