SynopsisA web application running on the remote host is affected by a remote code execution vulnerability.
DescriptionThe IBM Spectrum Protect Plus administrative console running on the remote host is affected by a remote command injection vulnerability due to improper validation of user-supplied data when processing a login HTTP request. An unauthenticated, remote attacker can exploit this, via a specially crafted HTTP request, to execute arbitrary code on the system with root privileges.
Note that the application is reportedly affected by other vulnerabilities; however, this plugin has not tested for those issues.
SolutionUpdate the IBM Spectrum Protect Plus RPM package spp-emi to 10.1.5-217 or later. That spp-emi package should be in the IBM Spectrum Protect Plus 10.1.5 patch1.