CVSS: 5.5EPSS: 0%CPEs: 36EXPL: 0CVE-2016-8916
https://notcve.org/view.php?id=CVE-2016-8916
05 May 2017 — IBM Tivoli Storage Manager 5.5, 6.1-6.4, and 7.1 stores password information in a log file that could be read by a local user when a set password command is issued. IBM X-Force ID: 118472. IBM Tivoli Storage Manager en versiones 5.5, 6.1-6.4, y 7.1 almacena información de contraseñas en un fichero de log que puede ser leído por un usuario local cuando se ejecuta un comando set passsword. IBM X-Force ID: 118472. • http://www.ibm.com/support/docview.wss?uid=swg21998166 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0CVE-2016-6110
https://notcve.org/view.php?id=CVE-2016-6110
01 Feb 2017 — IBM Tivoli Storage Manager discloses unencrypted login credentials to Vmware vCenter that could be obtained by a local user. Tivoli Storage Manager de IBM, revela credenciales de inicio de sesión no cifradas en vCenter de Vmware que podrían ser obtenidas por un usuario local. • http://www.ibm.com/support/docview.wss?uid=swg21996198 • CWE-255: Credentials Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-2016-5985
https://notcve.org/view.php?id=CVE-2016-5985
01 Feb 2017 — The IBM Tivoli Storage Manager (IBM Spectrum Protect) AIX client is vulnerable to a buffer overflow when Journal-Based Backup is enabled. A local attacker could overflow a buffer and execute arbitrary code on the system or cause a system crash. El cliente IBM Tivoli Storage Manager (IBM Spectrum Protect) AIX es vulnerable a un desbordamiento de búfer cuando Journal-Based Backup está habilitado. Un atacante local podría desboradr un búfer y ejecutar código arbitrario en el sistema o provocar una caída del si... • http://www.ibm.com/support/docview.wss?uid=swg21993695 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 55EXPL: 0CVE-2015-7404
https://notcve.org/view.php?id=CVE-2015-7404
14 Nov 2015 — IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server (aka Spectrum Protect for Databases) 5.5 before 5.5.6.2, 6.3 before 6.3.1.6, 6.4 before 6.4.1.8, and 7.1 before 7.1.4; Tivoli Storage Manager for Mail: Data Protection for Microsoft Exchange Server (aka Spectrum Protect for Mail) 5.5 before 5.5.1.1, 6.1 and 6.3 before 6.3.1.6, 6.4 before 6.4.1.8, and 7.1 before 7.1.4; and Tivoli Storage FlashCopy Manager for Windows (aka Spectrum Protect Snapshot) 2.x and 3.1 before 3.1.1.6, ... • http://www-01.ibm.com/support/docview.wss?uid=swg1IT11349 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 31EXPL: 0CVE-2015-6557
https://notcve.org/view.php?id=CVE-2015-6557
23 Aug 2015 — IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server 5.5 before 5.5.6.1, 6.3 before 6.3.1.5, 6.4 before 6.4.1.7, and 7.1 before 7.1.2; Tivoli Storage Manager for Mail: Data Protection for Microsoft Exchange Server 5.5 before 5.5.1.1, 6.1 before 6.1.3.7, 6.3 before 6.3.1.5, 6.4 before 6.4.1.7, and 7.1 before 7.1.2; and Tivoli Storage FlashCopy Manager 3.1 before 3.1.1.5, 3.2 before 3.2.1.7, and 4.1 before 4.1.2, when application tracing is used, place cleartext passwords in exce... • http://www-01.ibm.com/support/docview.wss?uid=swg1IT03480 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.1EPSS: 0%CPEs: 6EXPL: 0CVE-2013-6714
https://notcve.org/view.php?id=CVE-2013-6714
26 May 2014 — The FlashCopy Manager for VMware component in IBM Tivoli Storage FlashCopy Manager 3.1 through 4.1.0.1 does not properly check authorization for backup and restore operations, which allows local users to obtain sensitive VM data or cause a denial of service (data overwrite or disk consumption) via unspecified GUI actions. El componente FlashCopy Manager For VMware en IBM Tivoli Storage FlashCopy Manager 3.1 hasta 4.1.0.1 no comprueba debidamente autorización para operaciones de copia de seguridad y restaura... • http://www-01.ibm.com/support/docview.wss?uid=swg21673045 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 64EXPL: 0CVE-2013-2964
https://notcve.org/view.php?id=CVE-2013-2964
04 Oct 2013 — Buffer overflow in dsmtca in IBM Tivoli Storage Manager (TSM) through 5.5.4.0, 6.1.0 through 6.1.5.4, 6.2.0 through 6.2.4.7, and 6.3.0 through 6.3.0.17 on UNIX and Linux allows local users to gain privileges via unspecified vectors. Buffer overflow en dsmtca en IBM Tivoli Storage Manager (TSM) hasta la versión 5.5.4.0, 6.1.0 hasta la versión 6.1.5.4, 6.2.0 hasta la versión de 6.2.4.7, y 6.3.0 hasta la versión 6.3.0.17 a través de UNIX y Linux que permite a usuarios locales conseguir privilegios a través de ... • http://www-01.ibm.com/support/docview.wss?uid=swg1IC96517 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 65EXPL: 0CVE-2013-0471
https://notcve.org/view.php?id=CVE-2013-0471
21 Feb 2013 — The traditional scheduler in the client in IBM Tivoli Storage Manager (TSM) before 6.2.5.0, 6.3 before 6.3.1.0, and 6.4 before 6.4.0.1, when Prompted mode is enabled, allows remote attackers to cause a denial of service (scheduling outage) via unspecified vectors. El planificador tradicional en el cliente de IBM Tivoli Storage Manager (TSM) antes de v6.2.5.0, v6.3.1.0 antes de v6.3 y v6.4 antes de v6.4.0.1, cuando la modalidad de petición está activada, permite a atacantes remotos provocar una denegación de... • http://www-01.ibm.com/support/docview.wss?uid=swg1IC87331 •
CVSS: 9.1EPSS: 0%CPEs: 65EXPL: 0CVE-2013-0472
https://notcve.org/view.php?id=CVE-2013-0472
21 Feb 2013 — The Web GUI in the client in IBM Tivoli Storage Manager (TSM) 6.3 before 6.3.1.0 and 6.4 before 6.4.0.1 allows man-in-the-middle attackers to obtain unspecified client access, and consequently obtain unspecified server access, via unknown vectors. La interfaz gráfica de usuario Web en el cliente de IBM Tivoli Storage Manager (TSM) v6,3 antes de v6.3.1.0 y v6,4 antes de v6.4.0.1 permite ataques de man-in-the-middle para obtener acceso de clientes no especificados, y por lo tanto obtener acceso al servidor si... • http://www-01.ibm.com/support/docview.wss?uid=swg1IC87210 •
CVSS: 7.8EPSS: 0%CPEs: 34EXPL: 0CVE-2011-1222
https://notcve.org/view.php?id=CVE-2011-1222
17 Jul 2011 — Buffer overflow in the Journal Based Backup (JBB) feature in the backup-archive client in IBM Tivoli Storage Manager (TSM) before 5.4.3.4, 5.5.x before 5.5.3, 6.x before 6.1.4, and 6.2.x before 6.2.2 on Windows and AIX allows local users to gain privileges via unspecified vectors. Desbordamiento de búfer en característica de copia de seguridad diaria(JBB o Journal Based Backup) en el archivo de copia de seguridad de IBM Tivoli Storage Manager (TSM), antes de v5.4.3.4, en v5.5.x antes de v5.5.3, en v6.x ante... • http://secunia.com/advisories/45098 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •