3 matches found
CVE-2019-4140
IBM Tivoli Storage Manager Server IBM Spectrum Protect 7.1 and 8.1 could allow a local user to replace existing databases by restoring old data. IBM X-Force ID: 158336...
CVE-2019-4140
CVE-2019-4140 affects IBM Spectrum Protect Server (formerly IBM Tivoli Storage Manager) 7.1 and 8.1. The issue allows a local user to replace existing databases by restoring old data, potentially overwriting databases. Affected versions: 8.1.0.0–8.1.7.x and 7.1.0.0–7.1.9.200. Remediation: upgrade...
Security Bulletin: Password disclosure in IBM Spectrum Protect Server (CVE-2019-4140)
Summary The IBM Spectrum Protect formerly Tivoli Storage Manager Server may disclose the database restore password when using the dsmserv restore db command. This could allow another user to perform a database restore or possibly result in an old backup replacing the database. Vulnerability Detai...