Описание
IBM Spectrum Control (formerly Tivoli Storage Productivity Center) 5.2.x before 5.2.11 allows remote authenticated users to bypass intended access restrictions, and read task details or edit properties, via unspecified vectors.
Ссылки
- Vendor Advisory
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- Vendor Advisory
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:spectrum_control:5.2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_control:5.2.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_control:5.2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_control:5.2.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_control:5.2.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_control:5.2.4:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_control:5.2.4.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_control:5.2.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_control:5.2.5.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_control:5.2.6:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_control:5.2.7:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_control:5.2.7.1:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:a:ibm:spectrum_control:5.2.8:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_control:5.2.9:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_control:5.2.10:*:*:*:*:*:*:*
cpe:2.3:a:ibm:spectrum_control:5.2.10.1:*:*:*:*:*:*:*
EPSS
Процентиль: 30%
0.00109
Низкий
5.4 Medium
CVSS3
5.5 Medium
CVSS2
Дефекты
CWE-284
Связанные уязвимости
CVSS3: 5.4
github
больше 3 лет назад
IBM Spectrum Control (formerly Tivoli Storage Productivity Center) 5.2.x before 5.2.11 allows remote authenticated users to bypass intended access restrictions, and read task details or edit properties, via unspecified vectors.
EPSS
Процентиль: 30%
0.00109
Низкий
5.4 Medium
CVSS3
5.5 Medium
CVSS2
Дефекты
CWE-284