Tivoli Storage Manager@* Security Vulnerabilities and Issues — Tivoli Storage Manager@* CVE List

Lucene search

IbmTivoli Storage Manager*

16 matches found

CVE•added 2018/11/12 4:29 p.m.•60 views

CVE-2018-1786

IBM Spectrum Protect 7.1 and 8.1 dsmc and dsmcad processes incorrectly accumulate TCP/IP sockets in a CLOSE_WAIT state. This can cause TCP/IP resource leakage and may result in a denial of service. IBM X-Force ID: 148871.

7.5CVSS7.2AI score0.00382EPSS

CVE•added 2010/12/29 6:0 p.m.•46 views

CVE-2010-4604

Stack-based buffer overflow in the GeneratePassword function in dsmtca (aka the Trusted Communications Agent or TCA) in the backup-archive client in IBM Tivoli Storage Manager (TSM) 5.3.x before 5.3.6.10, 5.4.x before 5.4.3.4, 5.5.x before 5.5.2.10, and 6.1.x before 6.1.3.1 on Unix and Linux allows...

7.2CVSS7AI score0.01145EPSS

CVE•added 2013/02/21 4:35 a.m.•45 views

CVE-2013-0471

The traditional scheduler in the client in IBM Tivoli Storage Manager (TSM) before 6.2.5.0, 6.3 before 6.3.1.0, and 6.4 before 6.4.0.1, when Prompted mode is enabled, allows remote attackers to cause a denial of service (scheduling outage) via unspecified vectors.

4.3CVSS6.6AI score0.00603EPSS

CVE•added 2017/05/05 7:29 p.m.•45 views

CVE-2016-8916

IBM Tivoli Storage Manager 5.5, 6.1-6.4, and 7.1 stores password information in a log file that could be read by a local user when a set password command is issued. IBM X-Force ID: 118472.

5.5CVSS5.2AI score0.00053EPSS

CVE•added 2013/10/04 10:44 a.m.•44 views

CVE-2013-2964

Buffer overflow in dsmtca in IBM Tivoli Storage Manager (TSM) through 5.5.4.0, 6.1.0 through 6.1.5.4, 6.2.0 through 6.2.4.7, and 6.3.0 through 6.3.0.17 on UNIX and Linux allows local users to gain privileges via unspecified vectors.

7.2CVSS6.8AI score0.00053EPSS

CVE•added 2017/02/01 8:59 p.m.•44 views

CVE-2016-5985

The IBM Tivoli Storage Manager (IBM Spectrum Protect) AIX client is vulnerable to a buffer overflow when Journal-Based Backup is enabled. A local attacker could overflow a buffer and execute arbitrary code on the system or cause a system crash.

7.8CVSS7.9AI score0.00068EPSS

CVE•added 2017/02/01 10:59 p.m.•44 views

CVE-2016-6110

IBM Tivoli Storage Manager discloses unencrypted login credentials to Vmware vCenter that could be obtained by a local user.

6.5CVSS6.2AI score0.00053EPSS

CVE•added 2017/02/01 9:59 p.m.•43 views

CVE-2016-0371

The Tivoli Storage Manager (TSM) password may be displayed in plain text via application trace output while application tracing is enabled.

5.5CVSS5.4AI score0.00124EPSS

CVE•added 2011/07/17 8:55 p.m.•42 views

CVE-2011-1223

Buffer overflow in the Alternate Data Stream (aka ADS or named stream) functionality in the backup-archive client in IBM Tivoli Storage Manager (TSM) before 5.4.3.4, 5.5.x before 5.5.3, 6.x before 6.1.4, and 6.2.x before 6.2.2 on Windows allows local users to gain privileges via unspecified vectors...

7.2CVSS6.8AI score0.00051EPSS

CVE•added 2013/02/21 4:35 a.m.•41 views

CVE-2013-0472

The Web GUI in the client in IBM Tivoli Storage Manager (TSM) 6.3 before 6.3.1.0 and 6.4 before 6.4.0.1 allows man-in-the-middle attackers to obtain unspecified client access, and consequently obtain unspecified server access, via unknown vectors.

5.1CVSS6.3AI score0.00396EPSS

CVE•added 2015/02/22 2:59 a.m.•41 views

CVE-2014-6184

Stack-based buffer overflow in dsmtca in the client in IBM Tivoli Storage Manager (TSM) 5.4 through 5.4.3.6, 5.5 through 5.5.4.3, 6.1 through 6.1.5.6, 6.2 before 6.2.5.4, and 6.3 before 6.3.2.3 on UNIX, Linux, and OS X allows local users to gain privileges via unspecified vectors.

7.2CVSS7AI score0.00042EPSS

CVE•added 2018/09/26 3:29 p.m.•41 views

CVE-2018-1550

IBM Spectrum Protect 7.1 and 8.1 could allow a local user to corrupt or delete highly sensitive information that would cause a denial of service to other users. IBM X-Force ID: 142696.

6.2CVSS5.4AI score0.00036EPSS

CVE•added 2010/12/29 6:0 p.m.•40 views

CVE-2010-4606

Unspecified vulnerability in the Space Management client in the Hierarchical Storage Management (HSM) component in IBM Tivoli Storage Manager (TSM) 5.4.x before 5.4.3.4, 5.5.x before 5.5.3, 6.1.x before 6.1.4, and 6.2.x before 6.2.2 on Unix and Linux allows remote attackers to execute arbitrary com...

7.5CVSS7.8AI score0.04387EPSS

CVE•added 2011/07/17 8:55 p.m.•38 views

CVE-2011-1222

Buffer overflow in the Journal Based Backup (JBB) feature in the backup-archive client in IBM Tivoli Storage Manager (TSM) before 5.4.3.4, 5.5.x before 5.5.3, 6.x before 6.1.4, and 6.2.x before 6.2.2 on Windows and AIX allows local users to gain privileges via unspecified vectors.

7.2CVSS6.8AI score0.00051EPSS

CVE•added 2014/08/26 10:55 a.m.•38 views

CVE-2013-6335

The Backup-Archive client in IBM Tivoli Storage Manager (TSM) for Space Management 5.x and 6.x before 6.2.5.3, 6.3.x before 6.3.2, 6.4.x before 6.4.2, and 7.1.x before 7.1.0.3 on Linux and AIX, and 5.x and 6.x before 6.1.5.6 on Solaris and HP-UX, does not preserve file permissions across backup and...

3.3CVSS6.2AI score0.00034EPSS

CVE•added 2006/12/06 8:28 p.m.•37 views

CVE-2006-6309

Multiple array index errors in IBM Tivoli Storage Manager (TSM) before 5.2.9 and 5.3.x before 5.3.4 allow remote attackers to read arbitrary memory locations and cause a denial of service (crash) via a large index value in unspecified messages, a different issue than CVE-2006-5855.

7.5CVSS6.7AI score0.64549EPSS