IBM Spectrum Protect Plus up to 10.1.5 Log File cleartext storage

entryeditHistoryDiffjsonxmlCTI

A vulnerability, which was classified as problematic, was found in IBM Spectrum Protect Plus up to 10.1.5 (Backup Software). This affects an unknown function of the component Log File. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1055383510/24/2020VulD...cve_cnaIBM Corporationnvd.nist.gov10/24/2020accepted70
1055383410/24/2020VulD...xforce181779cve.mitre.org10/24/2020accepted70
1055383310/24/2020VulD...confirm_urlhttps://www.ibm.com/support/pages/node/6221388cve.mitre.org10/24/2020accepted70
1017389406/16/2020VulD...cwe312 (weak encryption)06/16/2020accepted90
1017389206/16/2020VulD...cve_nvd_summaryIBM Spectrum Protect Plus 10.1.0 through 10.1.5 discloses highly sensitive information in plain text in the virgo log file which could be used in further attacks against the system. IBM X-Force ID: 181779.mitre.org06/16/2020accepted100
1017389106/16/2020VulD...cve_assigned1577664000mitre.org06/16/2020accepted100
1017388506/16/2020VulD...cvss3_nvd_aNnist.gov06/16/2020accepted100
1017388406/16/2020VulD...cvss3_nvd_iNnist.gov06/16/2020accepted100
1017388306/16/2020VulD...cvss3_nvd_cHnist.gov06/16/2020accepted100
1017388206/16/2020VulD...cvss3_nvd_sUnist.gov06/16/2020accepted100
1017388106/16/2020VulD...cvss3_nvd_uiNnist.gov06/16/2020accepted100
1017388006/16/2020VulD...cvss3_nvd_prLnist.gov06/16/2020accepted100
1017387906/16/2020VulD...cvss3_nvd_acHnist.gov06/16/2020accepted100
1017387806/16/2020VulD...cvss3_nvd_avNnist.gov06/16/2020accepted100
1017385206/16/2020VulD...typeBackup Software06/16/2020accepted100
1017390206/16/2020VulD...cvss3_nvd_basescore5.3nist.gov06/16/2020accepted90
1017390106/16/2020VulD...cvss3_vuldb_rcX06/16/2020accepted90
1017390006/16/2020VulD...cvss3_vuldb_rlX06/16/2020accepted90
1017389906/16/2020VulD...cvss3_vuldb_eX06/16/2020accepted90
1017389806/16/2020VulD...cvss2_vuldb_rcND06/16/2020accepted90

Do you need the next level of professionalism?

Upgrade your account now!