CVE-2015-1942Improper Input Validation in IBM Tivoli Storage Manager Fastback

CWE-20Improper Input Validation3 documents3 sources
Severity
9.3CRITICALNVD
EPSS
2.5%
top 14.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Tivoli Storage Manager Fastback
Timeline
PublishedJun 30
Latest updateMay 17

Description

The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to write to arbitrary files, and subsequently execute these files, via a crafted TCP packet to an unspecified port.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-gcw4-w87m-5fhj: The server in IBM Tivoli Storage Manager FastBack 62022-05-17
CVEList
CVE-2015-1942: The server in IBM Tivoli Storage Manager FastBack 62015-06-30
CVE-2015-1942 — Improper Input Validation in IBM | cvebase