The Data Protection component in the VMware vSphere GUI in IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware (aka Spectrum Protect for Virtual Environments) 6.3 prior to 6.3.2.5, 6.4 prior to 6.4.3.1, and 7.1 prior to 7.1.4 and Tivoli Storage FlashCopy Manager for VMware (aka Spectrum Protect Snapshot) 3.1 prior to 3.1.1.3, 3.2 prior to 3.2.0.6, and 4.1 prior to 4.1.4 allows remote malicious users to obtain administrative privileges via a crafted URL that triggers back-end function execution.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
ibm tivoli storage manager for virtual environments data protection for vmware 6.4.1 |
||
ibm tivoli storage manager for virtual environments data protection for vmware 6.3.2 |
||
ibm tivoli storage flashcopy manager for vmware 6.4.3 |
||
ibm tivoli storage flashcopy manager for vmware 6.4.2 |
||
ibm tivoli storage flashcopy manager for vmware 6.3 |
||
ibm tivoli storage manager for virtual environments data protection for vmware 6.3.1 |
||
ibm tivoli storage manager for virtual environments data protection for vmware 4.1.3 |
||
ibm tivoli storage flashcopy manager for vmware 3.2 |
||
ibm tivoli storage flashcopy manager for vmware 3.1.1 |
||
ibm tivoli storage manager for virtual environments data protection for vmware 4.1.2 |
||
ibm tivoli storage manager for virtual environments data protection for vmware 7.1.1 |
||
ibm tivoli storage manager for virtual environments data protection for vmware 7.1.0 |
||
ibm tivoli storage manager for virtual environments data protection for vmware 4.1.0 |
||
ibm tivoli storage flashcopy manager for vmware 6.4 |
||
ibm tivoli storage manager for virtual environments data protection for vmware 7.1.3 |
||
ibm tivoli storage manager for virtual environments data protection for vmware 7.1.2 |
||
ibm tivoli storage flashcopy manager for vmware 3.1 |
||
ibm tivoli storage manager for virtual environments data protection for vmware 4.1.1 |
Vulmon