IBM Spectrum Protect Client could allow a local user to escalate their privileges to take full control of the system due to insecure directory permissions.
IBM Spectrum Protect Plus File Systems Agent stores potentially sensitive information in log files that could be read by a local user.
IBM Spectrum Protect Plus uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
Refer to IBM Security Bulletin for more updates. .