Lucene search

MitreCVE-2007-5022

HistorySep 21, 2007 - 6:17 p.m.

CVE-2007-5022

2007-09-2118:17:00

CWE-200

mitre

web.nvd.nist.gov

ibm tivoli

storage manager

tsm clients

vulnerability

remote access

data breach

ic53616

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.4

Confidence

High

EPSS

0.033

Percentile

91.4%

JSON

Unspecified vulnerability in certain IBM Tivoli Storage Manager (TSM) clients 5.1 before 5.1.8.1, 5.2 before 5.2.5.2, 5.3 before 5.3.5.3, and 5.4 before 5.4.1.2, when using “server-initiated prompted scheduling,” allows remote attackers to read a client’s data, aka IC53616.

Affected configurations

Nvd

Node

ibmtivoli_storage_manager_clientRange5.1–5.1.8.1

ibmtivoli_storage_manager_clientRange5.2–5.2.5.2

ibmtivoli_storage_manager_clientRange5.3–5.3.5.3

ibmtivoli_storage_manager_clientRange5.4–5.4.1.2

VendorProductVersionCPE
ibmtivoli_storage_manager_client*cpe:2.3:a:ibm:tivoli_storage_manager_client:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	tivoli_storage_manager_client	*	cpe:2.3:a:ibm:tivoli_storage_manager_client::::::::

References

osvdb.org/38162

secunia.com/advisories/26883

www-1.ibm.com/support/docview.wss?uid=swg21268775

www-1.ibm.com/support/search.wss?rs=0&q=IC53616&apar=only

www.securityfocus.com/bid/25743

www.securitytracker.com/id?1018725

www.vupen.com/english/advisories/2007/3228

exchange.xforce.ibmcloud.com/vulnerabilities/36701

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.4

Confidence

High

EPSS

0.033

Percentile

91.4%

JSON

Related for CVE-2007-5022