← back
CVE-2021-39064

CVE-2021-39064

CVSS 5.9 MEDIUMEPSS 1.4%
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.9EPSS 1.4%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
13 Dec 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM Spectrum Copy Data Management 2.2.13 and earlier has weak authentication and password rules and incorrectly handles default credentials for the Spectrum Copy Data Management Admin console. IBM X-Force ID: 214957.
CVSS:3.0/S:U/PR:N/A:N/AC:H/I:N/UI:N/AV:N/C:H/E:U/RC:C/RL:O
Affected products
IBM · Spectrum Copy Data Management

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/214957https://www.ibm.com/support/pages/node/6525554