CNNVD-202506-2677 Information
CNNVD ID
CNNVD-202506-2677
Related CVE
- CNNVD Published: 2025-06-20
Description (Chinese)
IBM Spectrum Protect Server是美国国际商业机器(IBM)公司的一种频谱保护系统。为物理文件服务器、虚拟环境和广泛的应用程序提供全面的数据弹性。 IBM Spectrum Protect Server 8.1至8.1.26版本存在访问控制错误漏洞,该漏洞源于会话认证不当,可能导致绕过认证访问未授权资源。
Description (English)
IBM Spectrum Production Server is a spectrum protection system for IBM. Provide comprehensive data elasticity for physical file servers, virtual environments and a wide range of applications. Versions 8.1 to 8.1.26 of IBM Spectrum Production Server contain access control errors, which stem from inappropriate session authentication and may lead to bypassing authentication access to unauthorized resources.
Hazard Level
Medium
Vulnerability Type
访问控制错误
Affected Vendor
国际商业机器
Published
2025-06-20
Last Modified
2026-02-24
References
https://www.ibm.com/support/pages/node/7236999 https://vigilance.fr/vulnerability/IBM-Storage-Protect-Server-user-access-via-Session-Authentication-47491
Patch
https://www.ibm.com/support/pages/node/7236999
Share on: