Vulnerabilities > IBM > Spectrum Protect > Critical

DATE CVE VULNERABILITY TITLE RISK
2020-04-23 CVE-2020-4415 Out-of-bounds Write vulnerability in IBM Spectrum Protect
IBM Spectrum Protect 7.1 and 8.1 server is vulnerable to a stack-based buffer overflow, caused by improper bounds checking.
network
low complexity
ibm CWE-787
critical
 9.8
9.8
2020-02-24 CVE-2020-4210 OS Command Injection vulnerability in IBM Spectrum Protect 10.1.0/10.1.5
IBM Spectrum Protect Plus 10.1.0 and 10.1.5 could allow a remote attacker to execute arbitrary code on the system.
network
low complexity
ibm CWE-78
critical
 9.8
9.8
2020-02-24 CVE-2020-4211 OS Command Injection vulnerability in IBM Spectrum Protect 10.1.0/10.1.5
IBM Spectrum Protect Plus 10.1.0 and 10.1.5 could allow a remote attacker to execute arbitrary code on the system.
network
low complexity
ibm CWE-78
critical
 9.8
9.8
2020-02-24 CVE-2020-4212 Improper Input Validation vulnerability in IBM Spectrum Protect 10.1.0/10.1.5
IBM Spectrum Protect Plus 10.1.0 and 10.1.5 could allow a remote attacker to execute arbitrary code on the system.
network
low complexity
ibm CWE-20
critical
 9.8
9.8
2020-02-24 CVE-2020-4213 OS Command Injection vulnerability in IBM Spectrum Protect 10.1.0/10.1.5
IBM Spectrum Protect Plus 10.1.0 and 10.1.5 could allow a remote attacker to execute arbitrary code on the system.
network
low complexity
ibm CWE-78
critical
 9.8
9.8
2020-02-24 CVE-2020-4222 OS Command Injection vulnerability in IBM Spectrum Protect 10.1.0/10.1.5
IBM Spectrum Protect Plus 10.1.0 and 10.1.5 could allow a remote attacker to execute arbitrary code on the system.
network
low complexity
ibm CWE-78
critical
 9.8
9.8