Information disclosure in Ibm Tivoli_storage_manager

CVE-2014-4818

dsmtca in the client in IBM Tivoli Storage Manager (TSM) 5.4.x, 5.5.x, 6.x before 6.4.3, and 7.1.x before 7.1.2 allows local users to discover the backup/restore encryption-key password via unspecified vectors.

Vulnerability class: Information Disclosure

EPSS: 0.000 (9.4th percentile) — read the EPSS interpretation.

Affected products

Ibm Tivoli_storage_manager — versions 5.4.0, 5.5, 6.1
N/a — versions n/a

Weakness classification (CWE)

CWE-200 — Information Disclosure

References

psirt@us.ibm.com (x_refsource_CONFIRM, Vendor Advisory)
1031795 (vdb-entry, x_refsource_SECTRACK)
72771 (vdb-entry, x_refsource_BID)
IT06016 (vendor-advisory, x_refsource_AIXAPAR)