Vulnerabilities > IBM > Spectrum Protect Operations Center > 7.1.11.000

DATE CVE VULNERABILITY TITLE RISK
2021-12-13 CVE-2021-38901 Information Exposure vulnerability in IBM Spectrum Protect Operations Center
IBM Spectrum Protect Operations Center 7.1, under special configurations, could allow a local user to obtain highly sensitive information.
local
low complexity
ibm CWE-200
5.5
2021-02-15 CVE-2020-4956 Resource Exhaustion vulnerability in IBM Spectrum Protect Operations Center
IBM Spectrum Protect Operations Center 7.1 and 8.1 is vulnerable to a denial of service, caused by a RPC that allows certain cache values to be set and dumped to a file.
high complexity
ibm CWE-400
4.8
2021-02-15 CVE-2020-4955 Unrestricted Upload of File with Dangerous Type vulnerability in IBM Spectrum Protect Operations Center
IBM Spectrum Protect Operations Center 7.1 and 8.1could allow a remote attacker to execute arbitrary code on the system, caused by improper parameter validation.
low complexity
ibm CWE-434
8.0
2021-02-15 CVE-2020-4954 Session Fixation vulnerability in IBM Spectrum Protect Operations Center
IBM Spectrum Protect Operations Center 7.1 and 8.1 could allow a remote attacker to bypass authentication restrictions, caused by improper session validation .
low complexity
ibm CWE-384
5.4