Back to CVE Browser

CVE-2021-39052

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.1560%

EPSS Percentile23.03th

PublishedDec 13, 2021

Last ModifiedNov 21, 2024

Vulnerability Description

IBM Spectrum Copy Data Management 2.2.13 and earlier could allow a remote attacker to access the Spring Boot console without authorization. IBM X-Force ID: 214523.

Affected Platforms (CPE)

📦

Ibm

Spectrum Copy Data Management

<= 2.2.13

References & Advisories

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/214523

🔗 https://www.ibm.com/support/pages/node/6525554

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/214523

🔗 https://www.ibm.com/support/pages/node/6525554

Related Vulnerabilities

CVE-2021-390659.8

IBM Spectrum Copy Data Management 2.2.13 and earlier could allow a remote attacker to execute arbitrary commands on the system, ca...

CVE-2021-390537.5

IBM Spectrum Copy Data Management 2.2.13 and earlier could allow a remote attacker to obtain sensitive information, caused by the ...

CVE-2021-390587.5

IBM Spectrum Copy Data Management 2.2.13 and earlier uses weaker than expected cryptographic algorithms that could allow an attack...

CVE-2021-390647.5

IBM Spectrum Copy Data Management 2.2.13 and earlier has weak authentication and password rules and incorrectly handles default cr...