Описание
IBM Spectrum Protect Plus 10.1.0 through 10.1.5 Administrative Console could allow an authenticated attacker to upload arbitrary files which could be execute arbitrary code on the vulnerable server. IBM X-Force ID: 181725.
Ссылки
- VDB EntryVendor Advisory
- PatchVendor Advisory
- Third Party Advisory
- VDB EntryVendor Advisory
- PatchVendor Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 10.1.0 (включая) до 10.1.5 (включая)
cpe:2.3:a:ibm:spectrum_protect_plus:*:*:*:*:*:*:*:*
EPSS
Процентиль: 68%
0.00564
Низкий
7.1 High
CVSS3
8 High
CVSS3
6 Medium
CVSS2
Дефекты
CWE-434
Связанные уязвимости
github
больше 3 лет назад
IBM Spectrum Protect Plus 10.1.0 through 10.1.5 Administrative Console could allow an authenticated attacker to upload arbitrary files which could be execute arbitrary code on the vulnerable server. IBM X-Force ID: 181725.
EPSS
Процентиль: 68%
0.00564
Низкий
7.1 High
CVSS3
8 High
CVSS3
6 Medium
CVSS2
Дефекты
CWE-434