Skip to main content

IBM Storage Protect Client CVE-2026-12628

| EUVDEUVD-2026-38277 CRITICAL
Use of Hard-coded Credentials (CWE-798)
2026-06-22 ibm GHSA-5vh7-hcv2-h9gx
9.1
CVSS 3.1 · Vendor: ibm
Share

Severity by source

Vendor (ibm) PRIMARY
9.1 HIGH
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
vuln.today AI
9.1 CRITICAL

Hardcoded credential reachable over the network with no auth or UI; impacts confidentiality and integrity of backup services, no availability impact described.

3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
4.0 AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (ibm).

CVSS VectorVendor: ibm

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None

Lifecycle Timeline

7
Analysis Updated
Jun 23, 2026 - 20:28 vuln.today
v3 (cvss_changed)
Analysis Updated
Jun 23, 2026 - 20:28 vuln.today
v2 (cvss_changed)
Re-analysis Queued
Jun 23, 2026 - 20:22 vuln.today
cvss_changed
Severity Changed
Jun 23, 2026 - 20:22 NVD
HIGH CRITICAL
CVSS changed
Jun 23, 2026 - 20:22 NVD
8.1 (HIGH) 9.1 (CRITICAL)
Analysis Generated
Jun 22, 2026 - 16:00 vuln.today
CVE Published
Jun 22, 2026 - 13:43 cve.org
HIGH 8.1

DescriptionCVE.org

IBM Storage Protect Client 8.1.0.0 through 8.2.1.0 and IBM Storage Protect Snapshot For Windows 8.1.0.0 through 8.2.1.0 could allow a remote attacker to bypass authentication due to the use of a hardcoded credential in the FlashCopy Manager (FCM) authentication mechanism. The application contains a static credential embedded in multiple authentication code paths, and does not properly validate authentication responses, which may allow an unauthenticated attacker to establish a trusted session and access protected services. This vulnerability affects client components across multiple versions and may allow an attacker to impersonate legitimate clients, potentially leading to unauthorized access to system resources.

AnalysisAI

Authentication bypass in IBM Storage Protect Client and IBM Storage Protect Snapshot for Windows (versions 8.1.0.0 through 8.2.1.0) allows remote unauthenticated attackers to impersonate legitimate clients via hardcoded credentials embedded in the FlashCopy Manager (FCM) authentication mechanism. The flaw, classified as CWE-798 with a CVSS 9.1 critical rating, enables attackers to establish trusted sessions and access protected backup services. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Identify exposed FCM service
Delivery
Extract hardcoded credential from client binary
Exploit
Send authentication request with static credential
Execution
Bypass response validation
Persist
Establish trusted client session
Impact
Access protected backup services

Vulnerability AssessmentAI

Exploitation The attacker must have network reachability to a vulnerable IBM Storage Protect Client or Storage Protect Snapshot for Windows instance (versions 8.1.0.0 through 8.2.1.0) running the FlashCopy Manager (FCM) authentication mechanism, which is typically exposed within enterprise backup network segments rather than the open internet. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 vector (AV:N/AC:L/PR:N/UI:N/C:H/I:H/A:N) describes a low-complexity, network-reachable, unauthenticated bypass with high confidentiality and integrity impact but no availability impact, justifying the 9.1 critical score. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker with network reach to a Storage Protect Client or Snapshot for Windows instance extracts the hardcoded credential from a publicly available copy of the 8.1.x-8.2.x client binary, then sends an authentication request to the FlashCopy Manager service using that static credential. Because the server does not properly validate the response, the attacker establishes a trusted session impersonating a legitimate backup client and accesses protected services, potentially exposing backup metadata and integrity of stored backup operations. …
Remediation Apply the vendor-released patch per IBM's advisory at https://www.ibm.com/support/pages/node/7277245, which addresses both Storage Protect Client and Storage Protect Snapshot for Windows in the 8.1.0.0-8.2.1.0 range; upgrade to the fixed version IBM specifies in that bulletin (no exact patched build number is provided in the input data, so confirm the target version directly from the advisory before deploying). … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

24 hours: Identify all systems running IBM Storage Protect Client/Snapshot versions 8.1.0.0-8.2.1.0; assess network exposure of backup management interfaces; review authentication logs for suspicious activity. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-12628 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy