Vulnerabilities > CVE-2019-4357 - Unspecified vulnerability in IBM Spectrum Protect Plus 10.1.1/10.1.2/10.1.3
Attack vector
LOCAL Attack complexity
LOW Privileges required
HIGH Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
When using IBM Spectrum Protect Plus 10.1.0, 10.1.2, and 10.1.3 to protect Oracle, DB2 or MongoDB databases, a redirected restore operation specifying a target path may allow execution of arbitrary code on the system. IBM X-Force ID: 161667,
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |
References
- http://www.ibm.com/support/docview.wss?uid=ibm10886111
- http://www.ibm.com/support/docview.wss?uid=ibm10886111
- http://www.securityfocus.com/bid/109003
- http://www.securityfocus.com/bid/109003
- https://exchange.xforce.ibmcloud.com/vulnerabilities/161667
- https://exchange.xforce.ibmcloud.com/vulnerabilities/161667