Description
IBM Spectrum Protect Plus 10.1.0 through 10.1.5 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 174975.
CVSS breakdown
CVSS 3.0
Availability
None
Attack Vector
Network
Privileges Required
None
Confidentiality
High
Attack Complexity
Low
Scope
Unchanged
Integrity
None
User Interaction
None
RL
O
RC
Changed
E
Unchanged
Affected products
- ibm / Spectrum Protect Plus10.1.0 – 10.1.0
- ibm / Spectrum Protect Plus10.1.5 – 10.1.5