Medium Severity

IBM Security Bulletin: Password exposure via job log in IBM Spectrum Protect Plus (CVE-2019-4385)

Share this post:

IBM Spectrum Protect Plus may display the vSNAP CIFS password in the Spectrum Protect Plus job log

CVE(s): CVE-2019-4385

Affected product(s) and affected version(s):
IBM Spectrum Protect Plus 10.1.2.219 through 10.1.2.303.

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10886099
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/162173

More stories

IBM Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to security vulnerabilities (CVE-2018-0732, CVE-2018-0739, CVE-2017-3735)

Jul 21, 2019 9:00 am EDT | Medium Severity

IBM has announced a release for IBM Security Identity Governance and Intelligence (IGI) in response to security vulnerabilities 3 issues for OpenSSL: 2 for a denial of service and 1 for an error while parsing an IPAdressFamily extension in an X.509 certificate. CVE(s): CVE-2018-0732, CVE-2018-0739, CVE-2017-3735 Affected product(s) and affected version(s):IBM Security Identity Governance and ...read more


IBM Security Bulletin: A Security Vulnerability affects IBM Cloud Private – Kubernetes (CVE-2019-11246)

Jul 20, 2019 9:01 am EDT | Medium Severity

A Security Vulnerability affects IBM Cloud Private – Kubernetes (CVE-2019-11246) CVE(s): CVE-2019-11246 Affected product(s) and affected version(s):IBM Cloud Private 3.1.0, 3.1.1, 3.1.2, 3.2.0 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=ibm10957893X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/162892 ...read more


IBM Security Bulletin: Multiple vulnerabilities in Jetty affect Netcool Agile Service Manager (CVE-2019-10247, CVE-2019-10246)

Jul 19, 2019 9:02 am EDT | Medium Severity

There are multiple vulnerabilities in Eclipse Jetty used by Netcool Agile Service Manager. Netcool Agile Service Manager has addressed the applicable CVEs. CVE(s): CVE-2019-10247, CVE-2019-10246 Affected product(s) and affected version(s):Netcool Agile Service Manager 1.1.3 – 1.1.4 Refer to the following reference URLs for remediation and additional vulnerability details:Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10887913X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/160610X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/160611 ...read more