Plain Text Password Disclosure in IBM Spectrum Protect for Enterprise Resource Planning Tracing

Plain Text Password Disclosure in IBM Spectrum Protect for Enterprise Resource Planning Tracing

CVE-2018-1987 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

IBM Spectrum Protect for Enterprise Resource Planning 7.1 and 8.1, if tracing is activated, the IBM Spectrum Protect node password may be displayed in plain text in the ERP trace file. IBM X-Force ID: 154280.

Learn more about our Web Application Penetration Testing UK.