CVE-2011-1372

IBM TS3100/TS3200 <A.60 - Auth Bypass

Title source: llm

Description

The Web User Interface on the IBM TS3100 and TS3200 tape libraries with firmware before A.60 allows remote attackers to bypass authentication and obtain administrative access via unspecified vectors.

References (2)

[Vendor Advisory] http://www.ibm.com/support/docview.wss?uid=ssg1S1003938

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/71026

Scores

EPSS 0.0010

EPSS Percentile 27.9%

Classification

CWE

CWE-287

Status draft

Affected Products (4)

ibm/ts3100_tape_library_firmware < a.40

ibm/ts3200_tape_library_firmware < a.40

ibm/ts3100_tape_library

ibm/ts3200_tape_library

Timeline

Published Nov 28, 2011

Tracked Since Feb 18, 2026