Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The server in IBM Spectrum Protect (aka Tivoli Storage Manager) 5.5 and 6.x before 6.3.5.1 and 7.x before 7.1.4 does not properly restrict use of the ASNODENAME option, which allows remote attackers to read or write to backup data by leveraging proxy authority.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Spectrum Protect 安全漏洞
Vulnerability Description
IBM Spectrum Protect(前称Tivoli Storage Manager)是美国IBM公司的一套数据保护平台,它为企业提供单一控制和管理点,并支持对所有规模的虚拟、物理和云环境进行备份和恢复。 IBM Spectrum Protect的服务器中存在安全漏洞,该漏洞源于程序没有正确限制使用ASNODENAME选项。远程攻击者可借助代理授权利用该漏洞读取或写入备份文件。以下版本受到影响:IBM Spectrum Protect 7.1.0.0版本至7.1.3.x版本,6.3.0.0版本至6.
CVSS Information
N/A
Vulnerability Type
N/A