Lucene search
IbmCVE-2013-5371HistoryJan 23, 2014 - 7:55 p.m.
CVE-2013-5371
2014-01-2319:55:03
CWE-264
ibm
web.nvd.nist.gov
26
ibm
tivoli storage manager
tsm
windows
permissions
resilient file system
refs
backup
restore
local users
filesystem operations
vulnerability
nvd
cve-2013-5371
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0
Percentile
5.1%
The client in IBM Tivoli Storage Manager (TSM) 6.3.1 and 6.4.0 on Windows does not preserve permissions of Resilient File System (ReFS) files across backup and restore operations, which allows local users to bypass intended access restrictions via standard filesystem operations.
Affected configurations
Node
ibmtivoli_storage_managerMatch6.3.1
ORibmtivoli_storage_managerMatch6.4.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | tivoli_storage_manager | 6.3.1 | cpe:2.3:a:ibm:tivoli_storage_manager:6.3.1:*:*:*:*:*:*:* |
| ibm | tivoli_storage_manager | 6.4.0 | cpe:2.3:a:ibm:tivoli_storage_manager:6.4.0:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2014-01-23 19:55:00
cvelist
cvelist
CVE-2013-5371
2014-01-23 19:00:00
kaspersky
kaspersky
KLA10211 SB vulnerability in IBM Tivoli Storage Manager
2014-01-13 00:00:00
nessus
nessus
nvd
nvd
CVE-2013-5371
2014-01-23 19:55:03
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0
Percentile
5.1%
Related for CVE-2013-5371