CVE-2013-6335

CWE-2813 documents3 sources
Severity
3.3LOW
EPSS
0.0%
top 86.21%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Tivoli Storage Manager
Timeline
PublishedAug 26
Latest updateMay 13

Description

The Backup-Archive client in IBM Tivoli Storage Manager (TSM) for Space Management 5.x and 6.x before 6.2.5.3, 6.3.x before 6.3.2, 6.4.x before 6.4.2, and 7.1.x before 7.1.0.3 on Linux and AIX, and 5.x and 6.x before 6.1.5.6 on Solaris and HP-UX, does not preserve file permissions across backup and restore operations, which allows local users to bypass intended access restrictions via standard filesystem operations.

CVSS vector

AV:L/AC:M/C:P/I:P/A:NExploitability: 3.4 | Impact: 4.9

Affected Packages1 packages

NVDibm/tivoli_storage_manager5.16.2.5.3+4

🔴Vulnerability Details

2
GHSA
GHSA-mx8h-pmqv-8c67: The Backup-Archive client in IBM Tivoli Storage Manager (TSM) for Space Management 52022-05-13
CVEList
CVE-2013-6335: The Backup-Archive client in IBM Tivoli Storage Manager (TSM) for Space Management 52014-08-26
CVE-2013-6335 (LOW CVSS 3.3) | The Backup-Archive client in IBM Ti | cvebase.io