Server Property Editing Vulnerability in IBM Tivoli Storage Productivity Center
CVE-2016-8942
3.1LOW
Key Information:
- Vendor
- IBM
- Vendor
- CVE Published:
- 1 February 2017
Summary
An authenticated user with specific knowledge of the IBM Tivoli Storage Productivity Center can exploit this vulnerability to modify a limited set of server properties. This poses potential security risks, as it allows alterations that an authorized user should not have the capacity to make, thus jeopardizing the integrity of the system's configuration.
Affected Version(s)
Spectrum Control Standard Select Edition 5.1
Spectrum Control Standard Select Edition 5.1.1
Spectrum Control Standard Select Edition 5.2
References
CVSS V3.1
Score:
3.1
Severity:
LOW
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved