CVE-2015-7404Sensitive Information Exposure in IBM Tivoli Storage Flashcopy Manager

CWE-200Sensitive Information Exposure3 documents3 sources
Severity
1.9LOWNVD
EPSS
0.0%
top 91.46%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
IBM Tivoli Storage Flashcopy ManagerIBM Tivoli Storage Manager FOR Databases Data Protection FOR Microsoft SQL ServerIBM Tivoli Storage Manager FOR Mail Data Protection FOR Microsoft Exchange Server
Timeline
PublishedNov 14
Latest updateMay 17

Description

IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server (aka Spectrum Protect for Databases) 5.5 before 5.5.6.2, 6.3 before 6.3.1.6, 6.4 before 6.4.1.8, and 7.1 before 7.1.4; Tivoli Storage Manager for Mail: Data Protection for Microsoft Exchange Server (aka Spectrum Protect for Mail) 5.5 before 5.5.1.1, 6.1 and 6.3 before 6.3.1.6, 6.4 before 6.4.1.8, and 7.1 before 7.1.4; and Tivoli Storage FlashCopy Manager for Windows (aka Spectrum Protect Snapshot) 2.x and 3.1 befo

CVSS vector

AV:L/AC:M/C:P/I:N/A:NExploitability: 3.4 | Impact: 2.9

Affected Packages2 packages

NVDibm/tivoli_storage_manager34 versions+33

🔴Vulnerability Details

2
GHSA
GHSA-4ff3-9jcf-6xfc: IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server (aka Spectrum Protect for Databases) 52022-05-17
CVEList
CVE-2015-7404: IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server (aka Spectrum Protect for Databases) 52015-11-14
CVE-2015-7404 — Sensitive Information Exposure in IBM | cvebase