Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm storage protect vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2019-4087
IBM Spectrum Protect Servers 7.1 and 8.1 and Storage Agents are vulnerable to a stack-based buffer overflow, caused by improper bounds checking by servers and storage agents in response to specifically crafted communication exchanges. By sending an overly long request, a remote a...
Ibm Spectrum Protect Operations Center
2.1
CVSSv2
CVE-2017-1339
IBM Spectrum Protect 7.1 and 8.1 (formerly Tivoli Storage Manager) Server uses weak encryption for the password. A database administrator may be able to decrypt the IBM Spectrum protect client or administrator password which can result in information disclosure or a denial of ser...
Ibm Tivoli Storage Manager 6.1.4
Ibm Tivoli Storage Manager 6.1.5.4
Ibm Tivoli Storage Manager 6.2.4
Ibm Tivoli Storage Manager 6.3.0.5
Ibm Tivoli Storage Manager 6.3.2.2
Ibm Tivoli Storage Manager 6.3.4
Ibm Tivoli Storage Manager 6.4.2
Ibm Tivoli Storage Manager 6.4.2.200
Ibm Tivoli Storage Manager 7.1.0.1
Ibm Tivoli Storage Manager 7.1.0.3
Ibm Tivoli Storage Manager 7.1.1.200
Ibm Tivoli Storage Manager 7.1.3
Ibm Tivoli Storage Manager 7.1.4.2
Ibm Tivoli Storage Manager 7.1.5.200
Ibm Tivoli Storage Manager 8.1.1.100
Ibm Tivoli Storage Manager 6.1
Ibm Tivoli Storage Manager 6.1.0
Ibm Tivoli Storage Manager 6.1.1
Ibm Tivoli Storage Manager 6.1.2
Ibm Tivoli Storage Manager 6.3.0.15
Ibm Tivoli Storage Manager 6.3.0.17
Ibm Tivoli Storage Manager 6.3.1
3.6
CVSSv2
CVE-2017-1301
IBM Spectrum Protect 7.1 and 8.1 could allow a local malicious user to launch a symlink attack. IBM Spectrum Protect Backup-archive Client creates temporary files insecurely. A local attacker could exploit this vulnerability by creating a symbolic link from a temporary file to va...
Ibm Tivoli Storage Manager 6.1.0
Ibm Tivoli Storage Manager 6.1.1
Ibm Tivoli Storage Manager 6.1.2
Ibm Tivoli Storage Manager 6.1.3
Ibm Tivoli Storage Manager 6.1.4
Ibm Tivoli Storage Manager 6.3.0.17
Ibm Tivoli Storage Manager 6.3.1
Ibm Tivoli Storage Manager 6.3.1.2
Ibm Tivoli Storage Manager 6.3.2.2
Ibm Tivoli Storage Manager 6.4.3
Ibm Tivoli Storage Manager 6.4.3.1
Ibm Tivoli Storage Manager 7.1
Ibm Tivoli Storage Manager 7.1..5.100
Ibm Tivoli Storage Manager 7.1.3.100
Ibm Tivoli Storage Manager 7.1.4
Ibm Tivoli Storage Manager 7.1.4.1
Ibm Tivoli Storage Manager 7.1.4.2
Ibm Tivoli Storage Manager 7.1.6.6
Ibm Tivoli Storage Manager 6.1.5
Ibm Tivoli Storage Manager 6.1.5.5
Ibm Tivoli Storage Manager 6.3
Ibm Tivoli Storage Manager 6.3.0.15
2.1
CVSSv2
CVE-2017-1378
IBM Spectrum Protect 7.1 and 8.1 (formerly Tivoli Storage Manager) disclosed unencrypted login credentials to Vmware vCenter in the application trace output which could be obtained by a local user. IBM X-Force ID: 126875.
Ibm Tivoli Storage Manager 8.1.0.2
Ibm Tivoli Storage Manager 7.1.6.5
Ibm Tivoli Storage Manager 6.1
Ibm Tivoli Storage Manager 6.1.0
Ibm Tivoli Storage Manager 6.1.1
Ibm Tivoli Storage Manager 6.3.0.5
Ibm Tivoli Storage Manager 6.3.0.15
Ibm Tivoli Storage Manager 6.3.0.17
Ibm Tivoli Storage Manager 6.3.1
Ibm Tivoli Storage Manager 6.4.2.200
Ibm Tivoli Storage Manager 6.4.2.500
Ibm Tivoli Storage Manager 6.4.2.600
Ibm Tivoli Storage Manager 6.4.3
Ibm Tivoli Storage Manager 6.4.3.1
Ibm Tivoli Storage Manager 7.1.3.000
Ibm Tivoli Storage Manager 7.1.3.1
Ibm Tivoli Storage Manager 7.1.3.2
Ibm Tivoli Storage Manager 7.1.3.100
Ibm Tivoli Storage Manager 6.1.5.4
Ibm Tivoli Storage Manager 6.1.5.5
Ibm Tivoli Storage Manager 6.1.5.6
Ibm Tivoli Storage Manager 6.2.0
2.1
CVSSv2
CVE-2016-8939
IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 and 8.1) clients/agents store password information in the Windows Registry in a manner which can be compromised. IBM X-Force ID: 118790.
Ibm Tivoli Storage Manager 8.1.1
Ibm Tivoli Storage Manager 6.4.1
Ibm Tivoli Storage Manager 6.4.2
Ibm Tivoli Storage Manager 6.1.0
Ibm Tivoli Storage Manager 6.1.1
Ibm Tivoli Storage Manager 6.1.5.6
Ibm Tivoli Storage Manager 6.2.0
Ibm Tivoli Storage Manager 6.3.0.15
Ibm Tivoli Storage Manager 6.3.0.17
Ibm Tivoli Storage Manager 6.3.6
Ibm Tivoli Storage Manager 7.1
Ibm Tivoli Storage Manager 7.1.1.2
Ibm Tivoli Storage Manager 7.1.1.100
Ibm Tivoli Storage Manager 7.1.3.100
Ibm Tivoli Storage Manager 7.1.4
Ibm Tivoli Storage Manager 7.1.4.1
Ibm Tivoli Storage Manager 7.1.7.100
Ibm Tivoli Storage Manager 7.1.7.200
Ibm Tivoli Storage Manager 6.4.2.500
Ibm Tivoli Storage Manager 6.4.2.600
Ibm Tivoli Storage Manager 6.4.3
Ibm Tivoli Storage Manager 6.1.4
2.1
CVSSv2
CVE-2016-2894
IBM Spectrum Protect (formerly Tivoli Storage Manager) 5.5 up to and including 6.3 prior to 6.3.2.6, 6.4 prior to 6.4.3.3, and 7.1 prior to 7.1.6 allows local users to obtain sensitive retrieved data from arbitrary accounts in opportunistic circumstances by leveraging previous us...
Ibm Tivoli Storage Manager 6.3.0.17
Ibm Tivoli Storage Manager 6.3.0.15
Ibm Tivoli Storage Manager 6.2.1
Ibm Tivoli Storage Manager 6.2.0
Ibm Tivoli Storage Manager 6.1.2
Ibm Tivoli Storage Manager 6.1.1
Ibm Tivoli Storage Manager 5.5.3
Ibm Tivoli Storage Manager 5.5.2
Ibm Tivoli Storage Manager 6.3.1
Ibm Tivoli Storage Manager 6.3.0.5
Ibm Tivoli Storage Manager 6.2.3
Ibm Tivoli Storage Manager 6.2.2
Ibm Tivoli Storage Manager 6.1.5
Ibm Tivoli Storage Manager 6.1.4
Ibm Tivoli Storage Manager 6.1.3
Ibm Tivoli Storage Manager 5.5.4.1
Ibm Tivoli Storage Manager 5.5.4
Ibm Tivoli Storage Manager 6.3.0
Ibm Tivoli Storage Manager 6.3
Ibm Tivoli Storage Manager 6.2
Ibm Tivoli Storage Manager 6.1.5.6
Ibm Tivoli Storage Manager 6.1.0
5
CVSSv2
CVE-2016-8937
The IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 and 8.1) default authentication protocol is vulnerable to a brute force attack due to disclosing too much information during authentication. An attacker could gain user or administrative access to the TSM server. IBM X-Forc...
Ibm Tivoli Storage Manager 6.1.2
Ibm Tivoli Storage Manager 6.1.3
Ibm Tivoli Storage Manager 6.1.4
Ibm Tivoli Storage Manager 6.1.5
Ibm Tivoli Storage Manager 6.3.1
Ibm Tivoli Storage Manager 6.3.1.2
Ibm Tivoli Storage Manager 6.3.2.2
Ibm Tivoli Storage Manager 6.3.3
Ibm Tivoli Storage Manager 6.4.3.1
Ibm Tivoli Storage Manager 7.1
Ibm Tivoli Storage Manager 7.1..5.100
Ibm Tivoli Storage Manager 7.1.0.1
Ibm Tivoli Storage Manager 7.1.4
Ibm Tivoli Storage Manager 7.1.4.1
Ibm Tivoli Storage Manager 7.1.4.2
Ibm Tivoli Storage Manager 7.1.5
Ibm Tivoli Storage Manager 6.1.0
Ibm Tivoli Storage Manager 6.1.5.5
Ibm Tivoli Storage Manager 6.2.0
Ibm Tivoli Storage Manager 6.3
Ibm Tivoli Storage Manager 6.3.0.15
Ibm Tivoli Storage Manager 6.3.5
7.2
CVSSv2
CVE-2019-4088
IBM Spectrum Protect Servers 7.1 and 8.1 and Storage Agents could allow a local malicious user to gain elevated privileges on the system, caused by loading a specially crafted library loaded by the dsmqsan module. By setting up such a library, a local attacker could exploit this ...
Ibm Spectrum Protect Operations Center
4
CVSSv2
CVE-2016-8940
IBM Tivoli Storage Manager (IBM Spectrum Protect) 6.1, 6.2, 6.3, and 7.1 does not perform sufficient authority checking on SQL queries. As a result, an attacker is able to submit SQL queries that access database tables that are not intended for access or use by administrators. Th...
Ibm Tivoli Storage Manager 7.1
Ibm Tivoli Storage Manager 7.1.0.1
Ibm Tivoli Storage Manager 7.1.1.200
Ibm Tivoli Storage Manager 7.1.3
Ibm Tivoli Storage Manager 7.1.4
Ibm Tivoli Storage Manager 7.1.4.2
Ibm Tivoli Storage Manager 6.3.0.5
Ibm Tivoli Storage Manager 6.3.1.2
Ibm Tivoli Storage Manager 6.1.4
Ibm Tivoli Storage Manager 6.1.5.4
Ibm Tivoli Storage Manager 6.2.2
Ibm Tivoli Storage Manager 6.2.3
Ibm Tivoli Storage Manager 7.1.0.3
Ibm Tivoli Storage Manager 7.1.1
Ibm Tivoli Storage Manager 7.1.1.1
Ibm Tivoli Storage Manager 7.1.1.100
Ibm Tivoli Storage Manager 7.1.5.200
Ibm Tivoli Storage Manager 7.1.7
Ibm Tivoli Storage Manager 6.3
Ibm Tivoli Storage Manager 6.3.0.15
Ibm Tivoli Storage Manager 6.1.5.5
Ibm Tivoli Storage Manager 6.1.5.6
2.6
CVSSv2
CVE-2015-7408
The server in IBM Spectrum Protect (aka Tivoli Storage Manager) 5.5 and 6.x prior to 6.3.5.1 and 7.x prior to 7.1.4 does not properly restrict use of the ASNODENAME option, which allows remote malicious users to read or write to backup data by leveraging proxy authority.
Ibm Tivoli Storage Manager 6.3.4.0
Ibm Tivoli Storage Manager 6.3.3.0
Ibm Tivoli Storage Manager 7.1.0.3
Ibm Tivoli Storage Manager 7.1.0.2
Ibm Tivoli Storage Manager 7.1.0.1
Ibm Tivoli Storage Manager 5.5.0.0
Ibm Tivoli Storage Manager 6.2.0.0
Ibm Tivoli Storage Manager 7.1.0.0
Ibm Tivoli Storage Manager 6.1.0.0
Ibm Tivoli Storage Manager 6.3.5.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »