Lucene search

PRIOn knowledge basePRION:CVE-2014-4817

HistoryNov 18, 2014 - 11:59 p.m.

Design/Logic Flaw

2014-11-1823:59:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

50.0%

JSON

The server in IBM Tivoli Storage Manager (TSM) 5.x and 6.x before 6.3.5.10 and 7.x before 7.1.1.100 allows remote attackers to bypass intended access restrictions and replace file backups by using a certain backup option in conjunction with a filename that matches a previously used filename.

CPENameOperatorVersion
tivoli_storage_managereq5.1.6
tivoli_storage_managereq6.2.4.4
tivoli_storage_managereq6.2.0.0
tivoli_storage_managereq5.3.6.3
tivoli_storage_managereq6.3.2.1
tivoli_storage_managereq6.4.2
tivoli_storage_managereq5.4.3.3
tivoli_storage_managereq5.2.8
tivoli_storage_managereq6.3.0.0
tivoli_storage_managereq5.4

Name	Operator	Version
tivoli_storage_manager	eq	5.1.6
tivoli_storage_manager	eq	6.2.4.4
tivoli_storage_manager	eq	6.2.0.0
tivoli_storage_manager	eq	5.3.6.3
tivoli_storage_manager	eq	6.3.2.1
tivoli_storage_manager	eq	6.4.2
tivoli_storage_manager	eq	5.4.3.3
tivoli_storage_manager	eq	5.2.8
tivoli_storage_manager	eq	6.3.0.0
tivoli_storage_manager	eq	5.4

Rows per page:

1-10 of 841

References

www-01.ibm.com/support/docview.wss?uid=swg1IT04884

www-01.ibm.com/support/docview.wss?uid=swg21686874

exchange.xforce.ibmcloud.com/vulnerabilities/95444

7 High

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

50.0%

JSON

Related for PRION:CVE-2014-4817