Buffer Overflow in IBM Tivoli Storage Manager FastBack
CVE-2015-8521

9.8CRITICAL

Key Information:

Vendor
IBM
Status
Tivoli Storage Manager Fastback
Vendor
CVE Published:
5 April 2016

Summary

A vulnerability exists in IBM Tivoli Storage Manager FastBack due to a buffer overflow in the server component. This flaw allows remote attackers to craft commands that could lead to arbitrary code execution, compromising the integrity of affected systems. It specifically impacts versions 5.5.x and 6.x before 6.1.12.2, necessitating prompt patches to mitigate potential exploitation. This risk is distinct from related vulnerabilities CVE-2015-8519, CVE-2015-8520, and CVE-2015-8522.

References

http://www.securityfocus.com/bid/84167
vdb-entryx_refsource_BID
http://www-01.ibm.com/support/docview.wss?uid=swg21975536
x_refsource_CONFIRM

EPSS Score

82% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
🍪 This website uses cookies, like every other website on the internet 😕 By using our website, you consent to the use of cookies.