CVE-2018-1882

4.7MEDIUM

Key Information:

Vendor: IBM
Status: Spectrum Protect For Space Management; Spectrum Protect
Vendor: CVE Published:; 8 April 2019

Summary

In a certain atypical IBM Spectrum Protect 7.1 and 8.1 configurations, the node password could be displayed in plain text in the IBM Spectrum Protect client trace file. IBM X-Force ID: 151968.

Affected Version(s)

Spectrum Protect 7.1

Spectrum Protect 8.1

Spectrum Protect for Space Management 7.1

References

http://www.ibm.com/support/docview.wss?uid=ibm10869208

x_refsource_CONFIRM

http://www.ibm.com/support/docview.wss?uid=ibm10869436

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/151968

vdb-entryx_refsource_XF

CVSS V3.1

Score:

4.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 8, 2019
Vulnerability Reserved
Dec 13, 2017