CVE-2015-1941 — Sensitive Information Exposure in IBM Tivoli Storage Manager Fastback

CWE-200 — Sensitive Information Exposure4 documents4 sources

Severity

7.8HIGHNVD

EPSS

4.2%

top 11.21%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Tivoli Storage Manager Fastback

Timeline

PublishedJun 30

Latest updateDec 8

Description

The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to read arbitrary files via a crafted TCP packet to an unspecified port.

CVSS vector

AV:N/AC:L/C:C/I:N/A:NExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

▶NVDibm/tivoli_storage_manager_fastback11 versions+10

🔴Vulnerability Details

OSV

protobuf vulnerabilities↗2022-12-08

▶

GHSA

GHSA-fjxr-28c8-xp4f: The server in IBM Tivoli Storage Manager FastBack 6↗2022-05-17

▶

CVEList

CVE-2015-1941: The server in IBM Tivoli Storage Manager FastBack 6↗2015-06-30

▶