CVE-2021-39057

Name of the Vulnerable Software and Affected Versions IBM Spectrum Protect Plus versions 10.1.0.0 through 10.1.8.x

Description The issue allows an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. This is due to a server-side request forgery (SSRF) vulnerability.

Recommendations For versions 10.1.0.0 through 10.1.8.x, update to a version that is not affected by this issue to prevent exploitation. As a temporary workaround, consider restricting access to the system to minimize the risk of unauthorized requests.