CVE-2016-0371

5.5MEDIUM

Key Information:

Vendor
IBM Corporation
Status
Tivoli Storage Manager
Vendor
CVE Published:
1 February 2017

Summary

The Tivoli Storage Manager (TSM) password may be displayed in plain text via application trace output while application tracing is enabled.

Affected Version(s)

Tivoli Storage Manager 5.3.5.3

Tivoli Storage Manager 5.4.1.2

Tivoli Storage Manager 4.2

References

http://www.securityfocus.com/bid/94148
vdb-entryx_refsource_BID
http://www-01.ibm.com/support/docview.wss?uid=swg21985114
x_refsource_CONFIRM

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.