ghsa-r95c-3gx6-f23p
Vulnerability from github
Published
2021-12-14 00:00
Modified
2021-12-16 00:02
Details
IBM Spectrum Protect Plus 10.1.0.0 through 10.1.8.x is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 214616.
{ "affected": [], "aliases": [ "CVE-2021-39057" ], "database_specific": { "cwe_ids": [ "CWE-918" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2021-12-13T19:15:00Z", "severity": "HIGH" }, "details": "IBM Spectrum Protect Plus 10.1.0.0 through 10.1.8.x is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 214616.", "id": "GHSA-r95c-3gx6-f23p", "modified": "2021-12-16T00:02:37Z", "published": "2021-12-14T00:00:31Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-39057" }, { "type": "WEB", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/214616" }, { "type": "WEB", "url": "https://www.ibm.com/support/pages/node/6525346" } ], "schema_version": "1.4.0", "severity": [] }
Loading...