CVE-2019-4087
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2019-4087
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
IBM Spectrum Protect Servers 7.1 and 8.1 and Storage Agents are vulnerable to a stack-based buffer overflow, caused by improper bounds checking by servers and storage agents in response to specifically crafted communication exchanges. By sending an overly long request, a remote attacker could overflow a buffer and execute arbitrary code on the system with instance id privileges or cause the server or storage agent to crash. IBM X-Force ID: 157510.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
IBM Spectrum Protect 缓冲区错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
IBM Spectrum Protect(前称Tivoli Storage Manager)是美国IBM公司的一套数据保护平台。该平台为企业提供单一控制和管理点,并支持对所有规模的虚拟、物理和云环境进行备份和恢复。 IBM Spectrum Protect Servers 7.1版本、8.1版本和Storage Agents中存在缓冲区错误漏洞,该漏洞源于程序没有执行正确的边界检测。远程攻击者可通过发送超长的请求利用该漏洞在系统上执行任意代码或造成服务器或Storage Agents崩溃。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| IBM | Spectrum Protect | 7.1 | - |
II. Public POCs for CVE-2019-4087
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2019-4087
Please Login to view more intelligence information
- http://www.ibm.com/support/docview.wss?uid=ibm10882472x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2019-4087
Same Patch Batch · IBM · 2019-07-02 · 7 CVEs total
| CVE-2019-4088 | IBM Spectrum Protect Servers和Storage Agents 权限许可和访问控制问题漏洞 | |
| CVE-2019-4129 | IBM Spectrum Protect Operations Center 信息泄露漏洞 | |
| CVE-2019-4134 | IBM Planning Analytics 跨站脚本漏洞 | |
| CVE-2019-4140 | IBM Spectrum Protect 访问控制错误漏洞 | |
| CVE-2019-4260 | IBM Daeja ViewONE Virtual 信息泄露漏洞 | |
| CVE-2019-4292 | IBM Security Guardium 代码问题漏洞 |
IV. Related Vulnerabilities
Same vendor: IBM
- CVE-2026-1577
IBM® Db2® is vulnerable to a denial of service with a specia - CVE-2025-36122
IBM® Db2® is vulnerable to a denial of service with a specia - CVE-2025-14688
IBM® Db2® is vulnerable to a denial of service when fetching - CVE-2026-2311
IBM i is affected by a privilege escalation vulnerability in - CVE-2025-36180
Inadequate Pod Communication Restrictions, affects watsonx.d
V. Comments for CVE-2019-4087
No comments yet