Tivoli Storage Manager Security Vulnerabilities and Issues — Tivoli Storage Manager CVE List

Lucene search

IbmTivoli Storage Manager

3 matches found

CVE•added 2016/02/15 2:59 a.m.•37 views

CVE-2015-7408

The server in IBM Spectrum Protect (aka Tivoli Storage Manager) 5.5 and 6.x before 6.3.5.1 and 7.x before 7.1.4 does not properly restrict use of the ASNODENAME option, which allows remote attackers to read or write to backup data by leveraging proxy authority.

3.7CVSS4.2AI score0.00196EPSS

CVE•added 2016/07/03 9:59 p.m.•37 views

CVE-2016-2894

IBM Spectrum Protect (formerly Tivoli Storage Manager) 5.5 through 6.3 before 6.3.2.6, 6.4 before 6.4.3.3, and 7.1 before 7.1.6 allows local users to obtain sensitive retrieved data from arbitrary accounts in opportunistic circumstances by leveraging previous use of a symlink during archive and ret...

2.5CVSS3.4AI score0.00055EPSS

CVE•added 2016/01/20 5:59 a.m.•35 views

CVE-2015-4951

Client Acceptor Daemon (CAD) in the client in IBM Spectrum Protect (formerly Tivoli Storage Manager) 5.5 and 6.x before 6.3.2.5, 6.4 before 6.4.3.1, and 7.1 before 7.1.3 allows remote attackers to cause a denial of service (daemon crash) via a crafted Web client URL.

5.3CVSS5.1AI score0.00538EPSS