IBM Storage Protect Client
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in IBM Storage Protect Client.
By the Year
In 2026 there have been 1 vulnerability in IBM Storage Protect Client with an average score of 9.1 out of ten. Storage Protect Client did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2026 as compared to last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 1 | 9.10 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 1 | 7.80 |
It may take a day or so for new Storage Protect Client vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent IBM Storage Protect Client Security Vulnerabilities
IBM Storage Protect Client 8.x Authentication Bypass via Hardcoded FCM Credential
CVE-2026-12628
9.1 - Critical
- June 22, 2026
IBM Storage Protect Client 8.1.0.0 through 8.2.1.0 and IBM Storage Protect Snapshot For Windows 8.1.0.0 through 8.2.1.0 could allow a remote attacker to bypass authentication due to the use of a hardcoded credential in the FlashCopy Manager (FCM) authentication mechanism. The application contains a static credential embedded in multiple authentication code paths, and does not properly validate authentication responses, which may allow an unauthenticated attacker to establish a trusted session and access protected services. This vulnerability affects client components across multiple versions and may allow an attacker to impersonate legitimate clients, potentially leading to unauthorized access to system resources.
Use of Hard-coded Credentials
IBM Spectrum Protect Client 8.1.0.08.1.19.0 DLL Hijack LCE
CVE-2023-35897
7.8 - High
- October 06, 2023
IBM Spectrum Protect Client and IBM Storage Protect for Virtual Environments 8.1.0.0 through 8.1.19.0 could allow a local user to execute arbitrary code on the system using a specially crafted file, caused by a DLL hijacking flaw. IBM X-Force ID: 259246.
DLL preloading
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for IBM Storage Protect Client or by IBM? Click the Watch button to subscribe.
