Ibm Storage Protect Client vulnerabilities

2 known vulnerabilities affecting ibm/storage_protect_client.

Total CVEs

2

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

HIGH1MEDIUM1

Vulnerabilities

Page 1 of 1

CVE-2023-35897HIGHCVSS 7.8≥ 8.1.0.0, ≤ 8.1.19.02023-10-06

CVE-2023-35897 [HIGH] CWE-94 CVE-2023-35897: IBM Spectrum Protect Client and IBM Storage Protect for Virtual Environments 8.1.0.0 through 8.1.19. IBM Spectrum Protect Client and IBM Storage Protect for Virtual Environments 8.1.0.0 through 8.1.19.0 could allow a local user to execute arbitrary code on the system using a specially crafted file, caused by a DLL hijacking flaw. IBM X-Force ID: 259246.

CVE-2023-40368MEDIUMCVSS 4.4≥ 8.1.0.0, ≤ 8.1.19.02023-09-20

CVE-2023-40368 [MEDIUM] CWE-200 CVE-2023-40368: IBM Storage Protect 8.1.0.0 through 8.1.19.0 could allow a privileged user to obtain sensitive infor IBM Storage Protect 8.1.0.0 through 8.1.19.0 could allow a privileged user to obtain sensitive information from the administrative command line client. IBM X-Force ID: 263456.