Описание
When using IBM Spectrum Protect Plus 10.1.0, 10.1.2, and 10.1.3 to protect Oracle or MongoDB databases, a redirected restore operation may result in an escalation of user privileges. IBM X-Force ID: 162165.
Ссылки
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- VDB EntryVendor Advisory
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- VDB EntryVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.3:*:*:*:*:*:*:*
EPSS
Процентиль: 20%
0.00064
Низкий
7.9 High
CVSS3
6.7 Medium
CVSS3
4.6 Medium
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 6.7
github
больше 3 лет назад
When using IBM Spectrum Protect Plus 10.1.0, 10.1.2, and 10.1.3 to protect Oracle or MongoDB databases, a redirected restore operation may result in an escalation of user privileges. IBM X-Force ID: 162165.
EPSS
Процентиль: 20%
0.00064
Низкий
7.9 High
CVSS3
6.7 Medium
CVSS3
4.6 Medium
CVSS2
Дефекты
NVD-CWE-noinfo