1. CVE-Search
  2. CVE-2018-1882
ID CVE-2018-1882
Summary In a certain atypical IBM Spectrum Protect 7.1 and 8.1 configurations, the node password could be displayed in plain text in the IBM Spectrum Protect client trace file. IBM X-Force ID: 151968.
References
Vulnerable Configurations
  • cpe:2.3:a:ibm:spectrum_protect_backup-archive_client:8.1.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:spectrum_protect_backup-archive_client:8.1.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:spectrum_protect_backup-archive_client:8.1.6:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:spectrum_protect_backup-archive_client:8.1.6:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:spectrum_protect_backup-archive_client:8.1.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:spectrum_protect_backup-archive_client:8.1.6.1:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:spectrum_protect_backup-archive_client:7.1.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:spectrum_protect_backup-archive_client:7.1.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:spectrum_protect_backup-archive_client:7.1.8.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:spectrum_protect_backup-archive_client:7.1.8.2:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:spectrum_protect_backup-archive_client:7.1.8.3:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:spectrum_protect_backup-archive_client:7.1.8.3:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:spectrum_protect_backup-archive_client:7.1.8.4:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:spectrum_protect_backup-archive_client:7.1.8.4:*:*:*:*:*:*:*
  • cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*
    cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
    cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
  • cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:*:*
    cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:*:*
  • cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
    cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.0.0:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.0.0:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.1:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.1:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.1.0:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.1.0:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.2:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.2:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.2.0:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.2.0:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.3:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.3:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.3.0:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.3.0:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.4:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.4:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.4.0:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.4.0:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.6:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.6:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.6.0:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.6.0:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.8:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.8:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.8.0:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.8.0:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.8.2:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.8.2:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.8.4:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.8.4:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.0.0:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.0.0:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.2:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.2:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.2.0:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.2.0:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.4:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.4:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.4.0:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.4.0:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.4.1:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.4.1:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.6:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.6:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.6.0:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.6.0:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.6.1:*:*:*:*:vmware:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.6.1:*:*:*:*:vmware:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.0.0:*:*:*:*:hyper-v:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.0.0:*:*:*:*:hyper-v:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.2:*:*:*:*:hyper-v:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.2:*:*:*:*:hyper-v:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.4:*:*:*:*:hyper-v:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.4:*:*:*:*:hyper-v:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.4.0:*:*:*:*:hyper-v:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.4.0:*:*:*:*:hyper-v:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.6:*:*:*:*:hyper-v:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.6:*:*:*:*:hyper-v:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.6.1:*:*:*:*:hyper-v:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:8.1.6.1:*:*:*:*:hyper-v:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.0.0:*:*:*:*:hyper-v:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.0.0:*:*:*:*:hyper-v:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.1:*:*:*:*:hyper-v:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.1:*:*:*:*:hyper-v:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.2:*:*:*:*:hyper-v:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.2:*:*:*:*:hyper-v:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.3:*:*:*:*:hyper-v:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.3:*:*:*:*:hyper-v:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.4:*:*:*:*:hyper-v:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.4:*:*:*:*:hyper-v:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.6:*:*:*:*:hyper-v:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.6:*:*:*:*:hyper-v:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.8:*:*:*:*:hyper-v:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.8:*:*:*:*:hyper-v:*:*
  • cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.8.0:*:*:*:*:hyper-v:*:*
    cpe:2.3:a:ibm:spectrum_protect_for_virtual_environments:7.1.8.0:*:*:*:*:hyper-v:*:*
CVSS
Base: 1.9 (as of 11-04-2022 - 20:38)
Impact:
Exploitability:
CWE CWE-312
CAPEC
  • Retrieve Embedded Sensitive Data
    An attacker examines a target system to find sensitive data that has been embedded within it. This information can reveal confidential contents, such as account numbers or individual keys/credentials that can be used as an intermediate step in a larger attack.
Access
VectorComplexityAuthentication
LOCAL MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
cvss-vector via4 AV:L/AC:M/Au:N/C:P/I:N/A:N
refmap via4
bid 107861
confirm
xf ibm-spectrum-cve20181882-info-disc (151968)
Last major update 11-04-2022 - 20:38
Published 08-04-2019 - 15:29
Last modified 11-04-2022 - 20:38
Back to Top