VYPR

Storage Protect Server

by IBM

CVEs (5)

  • CVE-2025-13855HigApr 1, 2026
    risk 0.49cvss 7.6epss 0.00

    IBM Storage Protect Server 8.2.0 IBM Storage Protect Plus Server is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify, or delete information in the back-end database.

  • CVE-2024-27277MedMar 21, 2024
    risk 0.40cvss 6.2epss 0.00

    The private key for the IBM Storage Protect Plus Server 10.1.0 through 10.1.16 certificate can be disclosed, undermining the security of the certificate. IBM X-Force ID: 285205.

  • CVE-2023-33832MedJul 19, 2023
    risk 0.40cvss 6.2epss 0.00

    IBM Spectrum Protect 8.1.0.0 through 8.1.17.0 could allow a local user to cause a denial of service due to due to improper time-of-check to time-of-use functionality. IBM X-Force ID: 256012.

  • CVE-2023-47148MedFeb 2, 2024
    risk 0.34cvss 5.3epss 0.01

    IBM Storage Protect Plus Server 10.1.0 through 10.1.15.2 Admin Console could allow a remote attacker to obtain sensitive information due to improper validation of unsecured endpoints which could be used in further attacks against the system. IBM X-Force ID: 270599.

  • CVE-2023-47715MedMar 21, 2024
    risk 0.28cvss 4.3epss 0.00

    IBM Storage Protect Plus Server 10.1.0 through 10.1.16 could allow an authenticated user with read-only permissions to add or delete entries from an existing HyperVisor configuration. IBM X-Force ID: 271538.