CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
EPSS
Percentile
12.6%
IBM Spectrum Protect, formerly known as Tivoli Storage Manager, installed on the remote host is version 8.1.x < 8.1.10.100. It is, therefore, affected by an information disclosure vulnerability in nondefault settings due to occasionally not encrypting the second chunk of an object in an encrypted container pool.
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(140200);
script_version("1.4");
script_set_attribute(attribute:"plugin_modification_date", value:"2022/04/11");
script_cve_id("CVE-2020-4591");
script_xref(name:"IAVB", value:"2020-B-0052");
script_name(english:"IBM Spectrum Protect 8.1.x < 8.1.10.100 Information Disclosure");
script_set_attribute(attribute:"synopsis", value:
"The backup service installed on the remote host is affected by an information disclosure vulnerability.");
script_set_attribute(attribute:"description", value:
"IBM Spectrum Protect, formerly known as Tivoli Storage Manager, installed on the remote host is version 8.1.x <
8.1.10.100. It is, therefore, affected by an information disclosure vulnerability in nondefault settings due to
occasionally not encrypting the second chunk of an object in an encrypted container pool.
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://exchange.xforce.ibmcloud.com/vulnerabilities/184746");
script_set_attribute(attribute:"see_also", value:"https://www.ibm.com/support/pages/node/6323469");
script_set_attribute(attribute:"see_also", value:"https://www.ibm.com/support/pages/node/6323765");
script_set_attribute(attribute:"solution", value:
"Upgrade to IBM Spectrum Protect 8.1.10.100 or later.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:P/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-4591");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"vuln_publication_date", value:"2020/09/01");
script_set_attribute(attribute:"patch_publication_date", value:"2020/08/27");
script_set_attribute(attribute:"plugin_publication_date", value:"2020/09/03");
script_set_attribute(attribute:"plugin_type", value:"combined");
script_set_attribute(attribute:"cpe", value:"cpe:/a:ibm:tivoli_storage_manager");
script_set_attribute(attribute:"cpe", value:"x-cpe:/a:ibm:spectrum_protect");
script_set_attribute(attribute:"stig_severity", value:"I");
script_set_attribute(attribute:"thorough_tests", value:"true");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"General");
script_copyright(english:"This script is Copyright (C) 2020-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ibm_tsm_detect.nasl", "ibm_spectrum_protect_installed.nbin");
script_require_ports("installed_sw/IBM Tivoli Storage Manager", "installed_sw/IBM Spectrum Protect");
exit(0);
}
include('vcf.inc');
include('vcf_extras.inc');
port = get_service(svc:'tsm-agent');
app_info = vcf::ibm::spectrum_protect::get_app_info(port:port);
vcf::check_granularity(app_info:app_info, sig_segments:2);
constraints = [
{ 'min_version' : '8.1', 'fixed_version' : '8.1.10.100' }
];
vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_NOTE);
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
EPSS
Percentile
12.6%