cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-28956,https://securityvulnerability.io/vulnerability/CVE-2023-28956,IBM Spectrum Protect Backup-Archive Client privilege escalation,A local privilege escalation vulnerability exists in the IBM Spectrum Protect Backup-Archive Client versions 8.1.0.0 through 8.1.17.2. This issue stems from improper access controls that could potentially be exploited by a local user to escalate their privileges within the system. Organizations using affected versions are advised to apply necessary patches and updates to mitigate this risk.,IBM,Spectrum Protect Backup-archive Client,8.4,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-06-22T02:15:00.000Z,0
CVE-2022-22478,https://securityvulnerability.io/vulnerability/CVE-2022-22478,Credential Storage Vulnerability in IBM Spectrum Protect Client,"The IBM Spectrum Protect Client versions 8.1.0.0 through 8.1.14.0 are affected by a vulnerability where user credentials are stored in plain text, allowing a local user to access sensitive authentication information. This exposes users to potential unauthorized access and exploitation of their data. It highlights critical security implications regarding credential management in software design, necessitating immediate action to mitigate risks.",IBM,Spectrum Protect Client,6.2,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2022-06-30T17:15:00.000Z,0
CVE-2022-22474,https://securityvulnerability.io/vulnerability/CVE-2022-22474,Denial of Service in IBM Spectrum Protect Client Operations,"A vulnerability exists in IBM Spectrum Protect affecting versions 8.1.0.0 through 8.1.14.0 where the dsmcad, dsmc, and dsmcsvc processes mishandle certain read operations on TCP/IP sockets. This flaw can lead to a condition that disrupts client operations, potentially causing service interruptions and impacting the availability of the affected systems.",IBM,Spectrum Protect Client,5.9,MEDIUM,0.0008699999889358878,false,,false,false,false,,,false,false,,2022-06-30T17:15:00.000Z,0
CVE-2020-4494,https://securityvulnerability.io/vulnerability/CVE-2020-4494,,"IBM Spectrum Protect Client 8.1.7.0 through 8.1.9.1 (Linux and Windows), 8.1.9.0 trough 8.1.9.1 (AIX) and IBM Spectrum Protect for Space Management 8.1.7.0 through 8.1.9.1 (Linux), 8.1.9.0 through 8.1.9.1 (AIX) web user interfaces could allow an attacker to bypass authentication due to improper session validation which can result in access to unauthorized resources. IBM X-Force ID: 182019.",IBM,"Spectrum Protect For Space Management (linux),Spectrum Protect For Space Management (aix),Spectrum Protect Client (aix),Spectrum Protect Client (linux And Windows)",7.5,HIGH,0.001069999998435378,false,,false,false,false,,,false,false,,2020-06-15T14:15:00.000Z,0
CVE-2020-4406,https://securityvulnerability.io/vulnerability/CVE-2020-4406,,"IBM Spectrum Protect Client 8.1.7.0 through 8.1.9.1 (Linux and Windows), 8.1.9.0 trough 8.1.9.1 (AIX) and IBM Spectrum Protect for Space Management 8.1.7.0 through 8.1.9.1 (Linux), 8.1.9.0 through 8.1.9.1 (AIX) web user interfaces could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 179488.",IBM,"Spectrum Protect Client (linux And Windows),Spectrum Protect Client (aix),Spectrum Protect For Space Management (aix),Spectrum Protect For Space Management (linux)",5.4,MEDIUM,0.0006500000017695129,false,,false,false,false,,,false,false,,2020-06-15T14:15:00.000Z,0
CVE-2019-4406,https://securityvulnerability.io/vulnerability/CVE-2019-4406,,IBM Spectrum Protect Backup-Archive Client 7.1 and 8.1 may be vulnerable to a denial of service attack due to a timing issue between client and server TCP/IP communications. IBM X-Force ID: 162477.,IBM,Spectrum Protect Backup-archive Client,4.4,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2019-11-25T17:15:00.000Z,0
CVE-2018-2025,https://securityvulnerability.io/vulnerability/CVE-2018-2025,,IBM Spectrum Protect Backup-Archive Client and IBM Spectrum Protect for Virtual Environments 7.1 and 8.1 creates directories/files in the CIT sub directory that are read/writable by everyone. IBM X-Force ID: 155551.,IBM,"Spectrum Protect Backup-archive Client,Spectrum Protect For Virtual Environments",5.1,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2019-11-22T00:00:00.000Z,0