Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The TCP-to-ODBC gateway in IBM Tivoli Provisioning Manager for OS Deployment 7.1.1.3 does not require authentication for SQL statements, which allows remote attackers to modify, create, or read database records via a session on TCP port 2020. NOTE: the vendor disputes this issue, stating that the "default Microsoft Access database is not password protected because it is intended to be used for evaluation purposes only.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Tivoli Provisioning Manager 授权问题漏洞
Vulnerability Description
IBM Tivoli Provisioning Manager是美国IBM公司的一款产品。帮助组织自动执行变更和发布管理。 IBM Tivoli Provisioning Manager for OS Deployment 7.1.1.3 中存在授权问题漏洞,该漏洞源于 TCP-to-ODBC 网关不需要对 SQL 语句进行身份验证,这允许远程攻击者通过 TCP 端口上的会话修改、创建或读取数据库记录2020。
CVSS Information
N/A
Vulnerability Type
N/A