Vulnerability in Ibm Spectrum Protect
CVE-2018-1882
In a certain atypical IBM Spectrum Protect 7.1 and 8.1 configurations, the node password could be displayed in plain text in the IBM Spectrum Protect client trace file. IBM X-Force ID: 151968.
EPSS: 0.000 (8.7th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 4.7 (Medium). Vector: CVSS:3.0/AV:L/UI:N/S:U/C:H/AC:H/I:N/PR:L/A:N/RC:C/E:U/RL:O.
Affected products
- Ibm Spectrum Protect — versions 8.1, 7.1
- Ibm Spectrum Protect For Space Management — versions 8.1, 7.1
References
- www.ibm.com/support/docview.wss (x_refsource_CONFIRM)
- www.ibm.com/support/docview.wss (x_refsource_CONFIRM)
- ibm-spectrum-cve20181882-info-disc (151968) (vdb-entry, x_refsource_XF)
- 107861 (vdb-entry, x_refsource_BID)
Frequently asked questions
- What is CVE-2018-1882?
- CVE-2018-1882 is a medium-severity vulnerability in Ibm Spectrum Protect. CVSS score: 4.7/10. Published 2019-04-08.
- How severe is CVE-2018-1882?
- Medium severity. CVSS v3 base score is 4.7 out of 10.