CVE-2021-20432 is a vulnerability in IBM Spectrum Protect Plus
Published on April 26, 2021

IBM Spectrum Protect Plus 10.1.0 through 10.1.7 uses Cross-Origin Resource Sharing (CORS) which could allow an attacker to carry out privileged actions and retrieve sensitive information as the domain name is not being limited to only trusted domains. IBM X-Force ID: 196344.

NVD

Products Associated with CVE-2021-20432

Want to know whenever a new CVE is published for IBM Spectrum Protect Plus? stack.watch will email you.

IBM Spectrum Protect Plus

Affected Versions

IBM Spectrum Protect Plus:

Version 10.1.0 is affected.
Version 10.1.7 is affected.

Exploit Probability

EPSS

0.16%

Percentile

36.46%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-20432 is a vulnerability in IBM Spectrum Protect PlusPublished on April 26, 2021

Products Associated with CVE-2021-20432

Affected Versions

Exploit Probability

CVE-2021-20432 is a vulnerability in IBM Spectrum Protect Plus
Published on April 26, 2021