Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:29 a.m.8 views

CVE-2023-49878

IBM System Storage Virtualization Engine TS7700 3957-VEC, 3948-VED and 3957-VEC could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID:...

4.3CVSS6.2AI score0.00657EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/27 6:24 p.m.7 views

Security Bulletin: IBM Virtualization Engine TS7700 is susceptible to multiple vulnerabilities in Python.

Summary IBM Virtualization Engine TS7700 is susceptible to two Tampering conditions and one potential Elevation of Privilege issue due to the use of Python CVE-2025-0938, CVE-2025-47273, CVE-2025-1795. TS7700 uses Python to perform operations with the Cloud and internal system configuration tasks...

8.8CVSS8.1AI score0.01499EPSS
Exploits4Affected Software3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-16382

Malware in sbrugna...

10CVSS9.3AI score0.02EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-28945

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.01091EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/30 8:8 p.m.6 views

Security Bulletin: IBM Virtualization Engine TS7700 is susceptible to Tampering (CVE-2025-36056)

Summary The IBM TS7700 virtualization solution has a vulnerability CVE-2025-36056 that makes it susceptible to tampering, as an attacker could exploit a Cross-Site Scripting flaw in its management interface. This security gap could enable unauthorized access to sensitive information through socia...

5.4CVSS6.2AI score0.00167EPSS
Exploits0Affected Software3
RedhatCVE
RedhatCVE
added 2025/05/23 1:56 a.m.9 views

CVE-2023-24958

A vulnerability in the IBM TS7700 Management Interface 8.51.2.12, 8.52.200.111, 8.52.102.13, and 8.53.0.63 could allow an authenticated user to submit a specially crafted URL leading to privilege escalation and remote code execution. IBM X-Force ID: 246320...

8.8CVSS7.4AI score0.01091EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/05/06 5:23 p.m.19 views

Security Bulletin: IBM Virtualization Engine TS7700 is susceptible to a Denial of Service (CVE-2024-6119) due to the use of OpenSSL

Summary IBM Virtualization Engine TS7700 is susceptible to a denial of service due to the use of OpenSSL CVE-2024-6119. OpenSSL is used in TS7700 to encrypt data in flight during EKM communications, Secure Data Transfer between clusters, and for TS7700 Advanced Object Store for DS8000...

7.5CVSS7.1AI score0.66594EPSS
Exploits0Affected Software3
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/28 10:8 p.m.45 views

Security Bulletin: IBM Virtualization Engine TS7700 is susceptible to remote code execution due to the use of OpenSSH (CVE-2024-6387)

Summary IBM Virtualization Engine TS7700 is susceptible to remote code execution due to the use of OpenSSH CVE-2024-6387. OpenSSH is used by TS7700 to allow access from the TSSC Console by IBM authorized service personnel. Vulnerability Details CVEID:CVE-2024-6387 DESCRIPTION: OpenSSH could allow...

8.1CVSS8.7AI score0.99506EPSS
Exploits68Affected Software3
IBM Security Bulletins
IBM Security Bulletins
added 2023/07/31 10:49 p.m.50 views

Security Bulletin: IBM Virtualization Engine TS7700 is susceptible to multiple vulnerabilities due to use of IBM® SDK Java™ Technology Edition, Version 8 (CVE-2023-21967, CVE-2023-21939, CVE-2023-21968, CVE-2023-21937)

Summary IBM Virtualization Engine TS7700 is susceptible to multiple vulnerabilities due to use of IBM® SDK Java™ Technology Edition, Version 8 CVE-2023-21967, CVE-2023-21939, CVE-2023-21968, CVE-2023-21937. The Java SDK is used by the TS7700 to provide the Management Interface, to perform cache...

5.9CVSS6.6AI score0.02474EPSS
Exploits1Affected Software2
Vulnrichment
Vulnrichment
added 2023/05/04 1:38 p.m.11 views

CVE-2023-24958 IBM TS7700 Management Interface command injection

A vulnerability in the IBM TS7700 Management Interface 8.51.2.12, 8.52.200.111, 8.52.102.13, and 8.53.0.63 could allow an authenticated user to submit a specially crafted URL leading to privilege escalation and remote code execution. IBM X-Force ID: 246320...

8.8CVSS8.8AI score0.01091EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/05/04 12:0 a.m.5 views

IBM Ts7700 操作系统命令注入漏洞

The IBM Ts7700 is a mainframe virtual tape solution from International Business Machines IBM, Inc. It is used to optimize data security and business continuity. An operating system command injection vulnerability exists in the IBM Ts7700 Management Interface that originates from a vulnerability...

8.8CVSS8.4AI score0.01091EPSS
Exploits0References3
OSV
OSV
added 2021/10/06 6:15 p.m.4 views

CVE-2021-29908

The IBM TS7700 Management Interface is vulnerable to unauthenticated access. By accessing a specially-crafted URL, an attacker may gain administrative access to the Management Interface without authentication. IBM X-Force ID: 207747...

9.8CVSS5.8AI score0.02EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 12:10 a.m.26 views

Security Bulletin: IBM Virtualization Engine TS7700 Is Affected by IBM GPFS Security Vulnerabilities (CVE-2015-4974 CVE-2015-4981)

Summary Security vulnerabilities have been identified in the current levels of IBM GPFS as used by the TS7700: - could allow a local non privileged attacker to execute commands with root privileges CVE-2015-4974 - could allow a local non privileged attacker to read system memory contents...

7.2CVSS2.2AI score0.00585EPSS
Exploits0Affected Software3
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 12:10 a.m.23 views

Security Bulletin: IBM Virtualization Engine TS7700 Is Affected by IBM GPFS Security Vulnerability (CVE-2015-1788)

Summary An OpenSSL denial of service vulnerability disclosed by the OpenSSL Project affects GSKit, which is used by the version of IBM GPFS used by the TS7700. Vulnerability Details CVEID: CVE-2015-1788 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by an error when processing ...

4.3CVSS1.1AI score0.23222EPSS
Exploits0Affected Software2
Rows per page
Query Builder