CVE-2021-20432 in Spectrum Protect Plusinfo

Zusammenfassung

von MITRE • 26.04.2021

IBM Spectrum Protect Plus 10.1.0 through 10.1.7 uses Cross-Origin Resource Sharing (CORS) which could allow an attacker to carry out privileged actions and retrieve sensitive information as the domain name is not being limited to only trusted domains. IBM X-Force ID: 196344.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Zuständig

IBM Corporation

Reservieren

17.12.2020

Veröffentlichung

26.04.2021

Moderieren

akzeptiert

Eintrag

VDB-173898

CPE

bereit

EPSS

0.00747

KEV

nein

Aktivitäten

very low

Quellen

Want to know what is going to be exploited?

We predict KEV entries!