Vulnerabilities > IBM > Spectrum Protect Plus > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-01 | CVE-2019-4383 | Unspecified vulnerability in IBM Spectrum Protect Plus 10.1.1/10.1.2/10.1.3 When using IBM Spectrum Protect Plus 10.1.0, 10.1.2, and 10.1.3 to protect Oracle or MongoDB databases, a redirected restore operation may result in an escalation of user privileges. | 6.7 |
| 2019-07-01 | CVE-2019-4357 | Unspecified vulnerability in IBM Spectrum Protect Plus 10.1.1/10.1.2/10.1.3 When using IBM Spectrum Protect Plus 10.1.0, 10.1.2, and 10.1.3 to protect Oracle, DB2 or MongoDB databases, a redirected restore operation specifying a target path may allow execution of arbitrary code on the system. | 6.7 |
| 2019-06-19 | CVE-2019-4385 | Insufficiently Protected Credentials vulnerability in IBM Spectrum Protect Plus IBM Spectrum Protect Plus 10.1.2 may display the vSnap CIFS password in the IBM Spectrum Protect Plus Joblog. | 6.5 |