Ibm: >> Tivoli Storage Manager >> 6.2.5.4 Security Vulnerabilities
IBM Tivoli Storage Manager 5.5, 6.1-6.4, and 7.1 stores password information in a log file that could be read by a local user when a set password command is issued. IBM X-Force ID: 118472.
CVSS Score
5.5
EPSS Score
0.001
Published
2017-05-05
IBM Tivoli Storage Manager discloses unencrypted login credentials to Vmware vCenter that could be obtained by a local user.
CVSS Score
6.5
EPSS Score
0.001
Published
2017-02-01
The Tivoli Storage Manager (TSM) password may be displayed in plain text via application trace output while application tracing is enabled.
CVSS Score
5.5
EPSS Score
0.001
Published
2017-02-01
The IBM Tivoli Storage Manager (IBM Spectrum Protect) AIX client is vulnerable to a buffer overflow when Journal-Based Backup is enabled. A local attacker could overflow a buffer and execute arbitrary code on the system or cause a system crash.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-02-01