CVE-2014-4818

IBM Tivoli Storage Manager <6.4.3-7.1.2 - Info Disclosure

Title source: llm
STIX 2.1

Description

dsmtca in the client in IBM Tivoli Storage Manager (TSM) 5.4.x, 5.5.x, 6.x before 6.4.3, and 7.1.x before 7.1.2 allows local users to discover the backup/restore encryption-key password via unspecified vectors.

References (4)

Core 4
Core References
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21697022
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1031795
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/72771
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1IT06016

Scores

EPSS 0.0024
EPSS Percentile 14.4%

Details

CWE
CWE-200
Status published
Products (13)
ibm/tivoli_storage_manager 5.4.0
ibm/tivoli_storage_manager 5.5
ibm/tivoli_storage_manager 6.1
ibm/tivoli_storage_manager 6.2
ibm/tivoli_storage_manager 6.3
ibm/tivoli_storage_manager 6.3.3
ibm/tivoli_storage_manager 6.3.4
ibm/tivoli_storage_manager 6.3.5
ibm/tivoli_storage_manager 6.4
ibm/tivoli_storage_manager 6.4.1
... and 3 more
Published Feb 24, 2015
Tracked Since Feb 18, 2026