NVD

Id
18868  
Name
CVE-2016-2894  
Description
IBM Spectrum Protect (formerly Tivoli Storage Manager) 5.5 through 6.3 before 6.3.2.6, 6.4 before 6.4.3.3, and 7.1 before 7.1.6 allows local users to obtain sensitive retrieved data from arbitrary accounts in opportunistic circumstances by leveraging previous use of a symlink during archive and retrieve actions.  
Reject
 
CVSS Version
2  
CVSS Score
2.1  
Severity
Low  
CVSS Base Score
2.1  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-19  
Published
2016-07-03  
Modified Date
2016-11-28  
Seq
2016-2894  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
104729 18868 CVE-2016-2894 IT13686  View
104730 18868 CVE-2016-2894 http://www-01.ibm.com/support/docview.wss?uid=swg21985579  View
104731 18868 CVE-2016-2894 91534  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
2735 JVNDB-2016-003508 IBM Spectrum Protect における任意のアカウントから重要な検索されたデータを取得される脆弱性 IBM Spectrum Protect (旧 Tivoli Storage Manager) には、任意のアカウントから重要なリトリーブされたデータを取得される脆弱性が存在します。 CVE-2016-2894 89400 CVE-2016-2894 18868 2.1 2.5 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-003508.html 2016-06-30 2016-07-12 View