Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Tivoli_storage_manager_for_virtual_environments
(Ibm)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 4 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2018-09-26 | CVE-2018-1550 | IBM Spectrum Protect 7.1 and 8.1 could allow a local user to corrupt or delete highly sensitive information that would cause a denial of service to other users. IBM X-Force ID: 142696. | Tivoli_storage_manager, Tivoli_storage_manager_for_space_management, Tivoli_storage_manager_for_virtual_environments | 5.5 | ||
| 2015-10-04 | CVE-2015-1988 | Cross-site scripting (XSS) vulnerability in IBM Tivoli Storage Manger for Virtual Environments: Data Protection for VMware 6.3 before 6.3.2.5, 6.4 before 6.4.3.1, and 7.1 before 7.1.3 and Tivoli Storage FlashCopy Manager for VMware 3.1 before 3.1.1.3, 3.2 before 3.2.0.6, and 4.1 before 4.1.3.0 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL. | Tivoli_storage_flashcopy_manager, Tivoli_storage_manager_for_virtual_environments | N/A | ||
| 2016-11-25 | CVE-2016-2988 | IBM Tivoli Storage Manger for Virtual Environments: Data Protection for VMware (aka Spectrum Protect for Virtual Environments) 6.4.x before 6.4.3.4 and 7.1.x before 7.1.6 allows remote authenticated users to bypass a TSM credential requirement and obtain administrative access by leveraging multiple simultaneous logins. | Tivoli_storage_manager_for_virtual_environments | 8.5 | ||
| 2014-05-26 | CVE-2013-6713 | The Data Protection for VMware component in IBM Tivoli Storage Manager for Virtual Environments (TSMVE) 6.3 through 7.1.0.2 does not properly check authorization for backup and restore operations, which allows local users to obtain sensitive VM data or cause a denial of service (disk consumption) via unspecified GUI actions. | Tivoli_storage_manager_for_virtual_environments | N/A |