Volerion logoVolerion
Volerion logoVolerion

IBM Storage Protect Server SQL Injection Vulnerability

Vulnerability

A SQL injection vulnerability has been identified in IBM Storage Protect Server version 8.2.0. This issue allows remote attackers to send specially crafted SQL statements that could be used to view, add, modify, or delete information in the back-end database. The vulnerability arises from improper neutralization of special elements used in SQL commands, enabling attackers to manipulate database queries and access or alter database information.

Impact

Exploitation of this vulnerability could lead to unauthorized access to the back-end database, allowing attackers to execute SQL commands that could manipulate database information. This includes the potential to view, add, modify, or delete data, which could disrupt normal operations or lead to unauthorized disclosure of sensitive information.

Remediation

Users can upgrade to IBM Storage Protect Server version 8.2.1 to address this vulnerability. Instructions for downloading the update are available on the IBM Support page.

Added: Apr 1, 2026, 1:28 AM
Updated: Apr 1, 2026, 1:28 AM

Vulnerability Rating

Custom Algorithm
spread
4.5
impact
3.1
exploitability
4.9
remediation
7.7
relevance
5.1
threat
0.0
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.