Vulnerability Details CVE-2015-4927
The Reporting and Monitoring component in Tivoli Monitoring in IBM Tivoli Storage Manager 6.3 before 6.3.6 and 7.1 before 7.1.3 on Linux and AIX uses world-writable permissions for unspecified files, which allows local users to gain privileges by writing to a file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 31.6%
CVSS Severity
CVSS v2 Score 7.2
References
Products affected by CVE-2015-4927
-
cpe:2.3:a:ibm:tivoli_storage_manager:6.3.3
-
cpe:2.3:a:ibm:tivoli_storage_manager:6.3.4
-
cpe:2.3:a:ibm:tivoli_storage_manager:6.3.5
-
cpe:2.3:a:ibm:tivoli_storage_manager:6.3.5.1
-
cpe:2.3:a:ibm:tivoli_storage_manager:7.1
-
cpe:2.3:a:ibm:tivoli_storage_manager:7.1.1
-
cpe:2.3:a:ibm:tivoli_storage_manager:7.1.2