Vulnerability Details CVE-2020-5018
IBM Spectrum Protect Plus 10.1.0 through 10.1.6 may include sensitive information in its URLs increasing the risk of such information being caputured by an attacker. IBM X-Force ID: 193654.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 28.6%
CVSS Severity
CVSS v3 Score 3.7
CVSS v2 Score 5.0
References
Products affected by CVE-2020-5018
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.0
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.1
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.1.142
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.2
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.2.209
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.2.219
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.2.247
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.2.271
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.2.303
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.2.350
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.3
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.3.236
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.3.286
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.4
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.4.145
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.4.179
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.4.222
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.4.254
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.4.277
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.5
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.5.2130
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.5.2153
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.5.2181
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.5.2199
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.6
-
cpe:2.3:o:linux:linux_kernel:-