CVSS: 6.2EPSS: 0%CPEs: 5EXPL: 0CVE-2023-33832 – IBM Storage Protect denial of service
https://notcve.org/view.php?id=CVE-2023-33832
19 Jul 2023 — IBM Spectrum Protect 8.1.0.0 through 8.1.17.0 could allow a local user to cause a denial of service due to due to improper time-of-check to time-of-use functionality. IBM X-Force ID: 256012. • https://exchange.xforce.ibmcloud.com/vulnerabilities/256012 • CWE-20: Improper Input Validation CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 6.2EPSS: 0%CPEs: 7EXPL: 0CVE-2022-22478
https://notcve.org/view.php?id=CVE-2022-22478
30 Jun 2022 — IBM Spectrum Protect Client 8.1.0.0 through 8.1.14.0 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 225886. IBM Spectrum Protect Client versiones 8.1.0.0 hasta 8.1.14.0, almacena las credenciales de usuario en texto sin cifrar que puede leer un usuario local. IBM X-Force ID: 225886 • https://exchange.xforce.ibmcloud.com/vulnerabilities/225886 • CWE-312: Cleartext Storage of Sensitive Information •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-22474
https://notcve.org/view.php?id=CVE-2022-22474
30 Jun 2022 — IBM Spectrum Protect 8.1.0.0 through 8.1.14.0 dsmcad, dsmc, and dsmcsvc processes incorrectly handle certain read operations on TCP/IP sockets. This can result in a denial of service for IBM Spectrum Protect client operations. IBM X-Force ID: 225348. Los procesos dsmcad, dsmc y dsmcsvc de IBM Spectrum Protect versiones 8.1.0.0 hasta 8.1.14.0, manejan inapropiadamente determinadas operaciones de lectura en sockets TCP/IP. Esto puede resultar en una denegación de servicio para las operaciones de cliente de IB... • https://exchange.xforce.ibmcloud.com/vulnerabilities/225348 •
CVSS: 8.4EPSS: 0%CPEs: 2EXPL: 0CVE-2021-29672 – Gentoo Linux Security Advisory 202209-02
https://notcve.org/view.php?id=CVE-2021-29672
26 Apr 2021 — IBM Spectrum Protect Client 8.1.0.0-8 through 1.11.0 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking when processing the current locale settings. A local attacker could overflow a buffer and execute arbitrary code on the system with elevated privileges or cause the application to crash. IBM X-Force ID: 199479 IBM Spectrum Protect Client versiones 8.1.0.0-8 hasta 1.11.0, es vulnerable a un desbordamiento del búfer en la región stack de la memoria, causado por una comprobaci... • https://exchange.xforce.ibmcloud.com/vulnerabilities/199479 • CWE-787: Out-of-bounds Write •
CVSS: 6.2EPSS: 0%CPEs: 2EXPL: 0CVE-2021-20546
https://notcve.org/view.php?id=CVE-2021-20546
26 Apr 2021 — IBM Spectrum Protect Client 8.1.0.0 through 8.1.11.0 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and cause the application to crash. IBM X-Force ID: 198934 IBM Spectrum Protect Client versiones 8.1.0.0 hasta 8.1.11.0, es vulnerable a un desbordamiento de búfer en la región stack de la memoria, causado por una comprobación de límites inapropiada. Un atacante local podría desbordar un búfer y causar que la aplicación se bloq... • https://exchange.xforce.ibmcloud.com/vulnerabilities/198934 • CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2018-1785
https://notcve.org/view.php?id=CVE-2018-1785
26 Sep 2018 — IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 and 8.1) uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt sensitive information. IBM X-Force ID: 148870. IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 y 8.1) emplea algoritmos criptográficos más débiles de lo esperado que podrían permitir que un atacante descifre información sensible. IBM X-Force ID: 148870. • http://www.ibm.com/support/docview.wss?uid=ibm10729873 • CWE-326: Inadequate Encryption Strength •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2018-1545
https://notcve.org/view.php?id=CVE-2018-1545
26 Sep 2018 — IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 and 8.1) uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 142649. IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 y 8.1) emplea algoritmos criptográficos más débiles de lo esperado que podrían permitir que un atacante descifre información altamente sensible. IBM X-Force ID: 142649. • http://www.ibm.com/support/docview.wss?uid=ibm10718013 • CWE-326: Inadequate Encryption Strength •