CVE-2019-4267: Buffer Overflow
First published: Mon Jul 22 2019(Updated: )
The IBM Spectrum Protect 7.1 and 8.1 Backup-Archive Client is vulnerable to a buffer overflow. This could allow execution of arbitrary code on the local system or the application to crash. IBM X-Force ID: 160200.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Spectrum Protect | >=7.1.0.0<7.1.8.6 | |
| IBM Spectrum Protect | >=8.1.0.0<8.1.8.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this IBM Spectrum Protect vulnerability?
The vulnerability ID is CVE-2019-4267.
What is the severity rating of CVE-2019-4267?
The severity rating of CVE-2019-4267 is 7.8 (high).
What is the affected software of CVE-2019-4267?
The affected software is IBM Spectrum Protect 7.1 and 8.1.
How can the vulnerability be exploited?
The vulnerability can be exploited by triggering a buffer overflow, which could allow execution of arbitrary code on the local system or cause the application to crash.
Is there a fix or patch available for CVE-2019-4267?
Yes, IBM has released a fix for this vulnerability. It is recommended to apply the latest patch or update from IBM Spectrum Protect.
- collector/nvd-index
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/event
- agent/author
- agent/type
- agent/weakness
- agent/tags
- agent/severity
- collector/mitre-cve
- source/MITRE
- vendor/ibm
- canonical/ibm spectrum protect
- version/ibm spectrum protect/7.1.0.0
- version/ibm spectrum protect/8.1.0.0