CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2022-22496
https://notcve.org/view.php?id=CVE-2022-22496
30 Jun 2022 — While a user account for the IBM Spectrum Protect Server 8.1.0.000 through 8.1.14 is being established, it may be configured to use SESSIONSECURITY=TRANSITIONAL. While in this mode, it may be susceptible to an offline dictionary attack. IBM X-Force ID: 226942. Mientras es establecida una cuenta de usuario para IBM Spectrum Protect Server versiones 8.1.0.000 hasta 8.1.14, puede configurarse para usar SESSIONSECURITY=TRANSITIONAL. Mientras esté en este modo, puede ser susceptible de un ataque de diccionario f... • https://exchange.xforce.ibmcloud.com/vulnerabilities/226942 • CWE-307: Improper Restriction of Excessive Authentication Attempts •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2022-22487
https://notcve.org/view.php?id=CVE-2022-22487
30 Jun 2022 — An IBM Spectrum Protect storage agent could allow a remote attacker to perform a brute force attack by allowing unlimited attempts to login to the storage agent without locking the administrative ID. A remote attacker could exploit this vulnerability using brute force techniques to gain unauthorized administrative access to both the IBM Spectrum Protect storage agent and the IBM Spectrum Protect Server 8.1.0.000 through 8.1.14 with which it communicates. IBM X-Force ID: 226326. Un agente de almacenamiento d... • https://exchange.xforce.ibmcloud.com/vulnerabilities/226326 • CWE-307: Improper Restriction of Excessive Authentication Attempts •
CVSS: 5.5EPSS: 0%CPEs: 34EXPL: 0CVE-2021-3669 – kernel: reading /proc/sysvipc/shm does not scale with large shared memory segment counts
https://notcve.org/view.php?id=CVE-2021-3669
11 May 2022 — A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts which could lead to resource exhaustion and DoS. Se ha encontrado un fallo en el kernel de Linux. La medición del uso de la memoria compartida no escala con grandes recuentos de segmentos de memoria compartida, lo que podría conllevar a el agotamiento de recursos y el DoS. Red Hat Advanced Cluster Management for Kubernetes 2.5.0 images Red Hat Advanced Cluster Management for Kube... • https://access.redhat.com/security/cve/CVE-2021-3669 • CWE-400: Uncontrolled Resource Consumption CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 3.3EPSS: 0%CPEs: 4EXPL: 0CVE-2020-4591
https://notcve.org/view.php?id=CVE-2020-4591
28 Aug 2020 — IBM Spectrum Protect Server 8.1.0.000 through 8.1.10.000 could disclose sensitive information in nondefault settings due to occasionally not encrypting the second chunk of an object in an encrypted container pool. IBM X-Force ID: 184746. IBM Spectrum Protect Server versiones 8.1.0.000 hasta 8.1.10.000, podría revelar información confidencial en configuraciones no predeterminadas debido a que ocasionalmente no cifra el segundo fragmento de un objeto en un grupo de contenedores cifrado. IBM X-Force ID: 184746 • https://exchange.xforce.ibmcloud.com/vulnerabilities/184746 • CWE-311: Missing Encryption of Sensitive Data •
CVSS: 4.4EPSS: 0%CPEs: 2EXPL: 0CVE-2018-1788
https://notcve.org/view.php?id=CVE-2018-1788
02 Nov 2018 — IBM Spectrum Protect Server 7.1 and 8.1 could disclose highly sensitive information via trace logs to a local privileged user. IBM X-Force ID: 148873. IBM Spectrum Protect Server 7.1 y 8.1 podría divulgar información altamente sensible mediante registros de rastreo a un usuario local privilegiado. IBM X-Force ID: 148873. • http://www.ibm.com/support/docview.wss?uid=ibm10730357 • CWE-532: Insertion of Sensitive Information into Log File •