CVSS: 5.5EPSS: 0%CPEs: 13EXPL: 0CVE-2014-4818
https://notcve.org/view.php?id=CVE-2014-4818
24 Feb 2015 — dsmtca in the client in IBM Tivoli Storage Manager (TSM) 5.4.x, 5.5.x, 6.x before 6.4.3, and 7.1.x before 7.1.2 allows local users to discover the backup/restore encryption-key password via unspecified vectors. dsmtca en el cliente en IBM Tivoli Storage Manager (TSM) 5.4.x, 5.5.x, 6.x anterior a 6.4.3, y 7.1.x anterior a 7.1.2 permite a usuarios locales descubrir la contraseña de la clave del cifrado de backup/restore a través de vectores no especificados. • http://www-01.ibm.com/support/docview.wss?uid=swg1IT06016 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 40EXPL: 0CVE-2014-6195
https://notcve.org/view.php?id=CVE-2014-6195
14 Feb 2015 — The (1) Java GUI and (2) Web GUI components in the IBM Tivoli Storage Manager (TSM) Backup-Archive client 5.4 and 5.5 before 5.5.4.4 on AIX, Linux, and Solaris; 5.4.x and 5.5.x on Windows and z/OS; 6.1 before 6.1.5.7 on z/OS; 6.1 and 6.2 before 6.2.5.2 on Windows, before 6.2.5.3 on AIX and Linux x86, and before 6.2.5.4 on Linux Z and Solaris; 6.3 before 6.3.2.1 on AIX, before 6.3.2.2 on Windows, and before 6.3.2.3 on Linux; 6.4 before 6.4.2.1; and 7.1 before 7.1.1 in IBM TSM for Mail, when the Data Protecti... • http://www-01.ibm.com/support/docview.wss?uid=swg1IT04249 • CWE-284: Improper Access Control •
CVSS: 7.0EPSS: 0%CPEs: 44EXPL: 0CVE-2014-4813
https://notcve.org/view.php?id=CVE-2014-4813
13 Feb 2015 — Race condition in the client in IBM Tivoli Storage Manager (TSM) 5.4.0.0 through 5.4.3.6, 5.5.0.0 through 5.5.4.3, 6.1.0.0 through 6.1.5.6, 6.2 before 6.2.5.4, 6.3 before 6.3.2.3, 6.4 before 6.4.2.1, and 7.1 before 7.1.1 on UNIX and Linux allows local users to obtain root privileges via unspecified vectors. Condición de carrera en el cliente en IBM Tivoli Storage Manager (TSM) 5.4.0.0 hasta 5.4.3.6, 5.5.0.0 hasta 5.5.4.3, 6.1.0.0 hasta 6.1.5.6, 6.2 anterior a 6.2.5.4, 6.3 anterior a 6.3.2.3, 6.4 anterior a ... • http://www-01.ibm.com/support/docview.wss?uid=swg1IT04140 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 22EXPL: 0CVE-2014-6185
https://notcve.org/view.php?id=CVE-2014-6185
13 Feb 2015 — dsmtca in the client in IBM Tivoli Storage Manager (TSM) 6.3 before 6.3.2.3, 6.4 before 6.4.2.2, and 7.1 before 7.1.1.3 does not properly restrict shared-library loading, which allows local users to gain privileges via a crafted DSO file. dsmtca en el cliente en IBM Tivoli Storage Manager (TSM) 6.3 anterior a 6.3.2.3, 6.4 anterior a 6.4.2.2, y 7.1 anterior a 7.1.1.3 no restringe correctamente la carga de la libraría compartida, lo que permite a usuarios locales ganar privilegios a través de un fichero DSO m... • http://www-01.ibm.com/support/docview.wss?uid=swg1IT05713 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.1EPSS: 0%CPEs: 84EXPL: 0CVE-2014-4817
https://notcve.org/view.php?id=CVE-2014-4817
18 Nov 2014 — The server in IBM Tivoli Storage Manager (TSM) 5.x and 6.x before 6.3.5.10 and 7.x before 7.1.1.100 allows remote attackers to bypass intended access restrictions and replace file backups by using a certain backup option in conjunction with a filename that matches a previously used filename. El servidor en IBM Tivoli Storage Manager (TSM) 5.x y 6.x anterior a 6.3.5.10 y 7.x anterior a 7.1.1.100 permitiría a atacantes remotos eludir las restricciones de acceso y reemplazar las copias de seguridad de archivos... • http://www-01.ibm.com/support/docview.wss?uid=swg1IT04884 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.1EPSS: 0%CPEs: 9EXPL: 0CVE-2013-6335
https://notcve.org/view.php?id=CVE-2013-6335
26 Aug 2014 — The Backup-Archive client in IBM Tivoli Storage Manager (TSM) for Space Management 5.x and 6.x before 6.2.5.3, 6.3.x before 6.3.2, 6.4.x before 6.4.2, and 7.1.x before 7.1.0.3 on Linux and AIX, and 5.x and 6.x before 6.1.5.6 on Solaris and HP-UX, does not preserve file permissions across backup and restore operations, which allows local users to bypass intended access restrictions via standard filesystem operations. El cliente Backup-Archive en IBM Tivoli Storage Manager (TSM) for Space Management 5.x y 6.x... • http://secunia.com/advisories/60482 • CWE-281: Improper Preservation of Permissions •