Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.6
IBM Storage Protect Server 8.2.0 allows unauthorized database access
CVE-2025-13855
Summary
IBM Storage Protect Server 8.2.0 has a security weakness that lets an attacker, from anywhere, view or change information in the server's database. This could lead to unauthorized access to sensitive data. To fix this, update to a newer version of IBM Storage Protect Server or apply the necessary patches.
Original title
IBM Storage Protect Server 8.2.0 IBM Storage Protect Plus Server is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to vie...
Original description
IBM Storage Protect Server 8.2.0 IBM Storage Protect Plus Server is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify, or delete information in the back-end database.
nvd CVSS3.1
7.6
Vulnerability type
CWE-89
SQL Injection
Published: 1 Apr 2026 · Updated: 1 Apr 2026 · First seen: 1 Apr 2026