2 matches found
Security Bulletin: Privilege Escalation Vulnerability in the Data Protection for VMware GUI (CVE-2013-6713)
Summary In customer environments that utilize VMware restricted users, users of the Tivoli Storage Manager for Virtual Environments: Data Protection for VMware GUI can back up and restore VMs that they are not authorized to access. Vulnerability Details CVE ID: CVE-2013-6713 DESCRIPTION: In...
CVE-2013-6713
The IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware (TSMVE) component is affected in versions 6.3, 6.4, and 7.1 by CVE-2013-6713 due to improper authorization checks in the GUI for backup/restore operations. This lets VMware-restricted users access VM data and back...