CVSS: 6.2EPSS: 0%CPEs: 7EXPL: 0CVE-2018-1550
https://notcve.org/view.php?id=CVE-2018-1550
26 Sep 2018 — IBM Spectrum Protect 7.1 and 8.1 could allow a local user to corrupt or delete highly sensitive information that would cause a denial of service to other users. IBM X-Force ID: 142696. IBM Spectrum Protect 7.1 y 8.1 podría permitir que un usuario local corrompa o elimine información altamente sensible que provocaría una denegación de servicio (DoS) en otros usuarios. IBM X-Force ID: 142696. • http://www.ibm.com/support/docview.wss?uid=ibm10719401 • CWE-269: Improper Privilege Management •
CVSS: 4.4EPSS: 0%CPEs: 65EXPL: 0CVE-2017-1339
https://notcve.org/view.php?id=CVE-2017-1339
05 Oct 2017 — IBM Spectrum Protect 7.1 and 8.1 (formerly Tivoli Storage Manager) Server uses weak encryption for the password. A database administrator may be able to decrypt the IBM Spectrum protect client or administrator password which can result in information disclosure or a denial of service. IBM X-Force ID: 126247. El servidor de IBM Spectrum Protect 7.1 y 8.1 (anteriormente Tivoli Storage Manager) utiliza un cifrado de contraseña débil. Un administrador de la base de datos podría descifrar la contraseña del clien... • http://www.ibm.com/support/docview.wss?uid=swg22007936 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVSS: 9.8EPSS: 0%CPEs: 65EXPL: 0CVE-2016-8937
https://notcve.org/view.php?id=CVE-2016-8937
05 Oct 2017 — The IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 and 8.1) default authentication protocol is vulnerable to a brute force attack due to disclosing too much information during authentication. An attacker could gain user or administrative access to the TSM server. IBM X-Force ID: 118750. El protocolo de autenticación por defecto de IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 y 8.1) es vulnerable a ataques de fuerza bruta ya que revela demasiada información durante el proceso de autenticación. ... • http://www.ibm.com/support/docview.wss?uid=swg22007935 • CWE-287: Improper Authentication •
CVSS: 5.5EPSS: 0%CPEs: 65EXPL: 0CVE-2016-8939
https://notcve.org/view.php?id=CVE-2016-8939
07 Jun 2017 — IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 and 8.1) clients/agents store password information in the Windows Registry in a manner which can be compromised. IBM X-Force ID: 118790. Clientes y agentes de Tivoli Storage Manager de IBM (Spectrum Protect versiones 7.1 y 8.1 de IBM), almacenan información de contraseñas en el Registro Windows de una manera que pueda verse comprometida. ID de IBM X-Force: 118790. • http://www.ibm.com/support/docview.wss?uid=swg22003738 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •