CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2019-4088
https://notcve.org/view.php?id=CVE-2019-4088
02 Jul 2019 — IBM Spectrum Protect Servers 7.1 and 8.1 and Storage Agents could allow a local attacker to gain elevated privileges on the system, caused by loading a specially crafted library loaded by the dsmqsan module. By setting up such a library, a local attacker could exploit this vulnerability to gain root privileges on the vulnerable system. IBM X-Force ID: 157511. Spectrum Protect Servers versiones 7.1 y 8.1 y Storage Agents de IBM, podrían permitir que un atacante local alcance privilegios elevados en el sistem... • http://www.ibm.com/support/docview.wss?uid=ibm10882472 •
CVSS: 10.0EPSS: 8%CPEs: 2EXPL: 0CVE-2019-4087
https://notcve.org/view.php?id=CVE-2019-4087
02 Jul 2019 — IBM Spectrum Protect Servers 7.1 and 8.1 and Storage Agents are vulnerable to a stack-based buffer overflow, caused by improper bounds checking by servers and storage agents in response to specifically crafted communication exchanges. By sending an overly long request, a remote attacker could overflow a buffer and execute arbitrary code on the system with instance id privileges or cause the server or storage agent to crash. IBM X-Force ID: 157510. IBM Spectrum Protect Servers versiones 7.1 y 8.1 y Storage A... • http://www.ibm.com/support/docview.wss?uid=ibm10882472 • CWE-787: Out-of-bounds Write •