CVE Vulnerabilities

CVE-2015-4927

Published: Nov 04, 2015 | Modified: Dec 07, 2016
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

The Reporting and Monitoring component in Tivoli Monitoring in IBM Tivoli Storage Manager 6.3 before 6.3.6 and 7.1 before 7.1.3 on Linux and AIX uses world-writable permissions for unspecified files, which allows local users to gain privileges by writing to a file.

Affected Software

Name Vendor Start Version End Version
Tivoli_storage_manager Ibm 7.1.2 7.1.2
Tivoli_storage_manager Ibm 6.3.5.1 6.3.5.1
Tivoli_storage_manager Ibm 6.3.5 6.3.5
Tivoli_storage_manager Ibm 6.3.3 6.3.3
Tivoli_storage_manager Ibm 7.1.1 7.1.1
Tivoli_storage_manager Ibm 6.3.4 6.3.4
Tivoli_storage_manager Ibm 7.1 7.1

References