What is CVE-2014-6195?

CVE-2014-6195 is a vulnerability in Ibm Aix, classified under Improper Access Control. Published 2015-02-14.

Is CVE-2014-6195 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Ibm Aix

CVE-2014-6195

The (1) Java GUI and (2) Web GUI components in the IBM Tivoli Storage Manager (TSM) Backup-Archive client 5.4 and 5.5 before 5.5.4.4 on AIX, Linux, and Solaris; 5.4.x and 5.5.x on Windows and z/OS; 6.1 before 6.1.5.7 on z/OS; 6.1 and 6.2 b…

EPSS: 0.000 (11.9th percentile) — read the EPSS interpretation.

Affected products

Ibm Aix
Ibm Linux_on_ibm_z
Ibm Tivoli_storage_manager — versions 7.1, 5.5, 6.4
Ibm Z\/os
Linux Linux_kernel
Microsoft Windows
Oracle Solaris
N/a — versions n/a

Weakness classification (CWE)

CWE-284 — Improper Access Control

Public proof-of-concept exploits

Live-Hack-CVE/CVE-2014-6195

References

ibm-tsm-cve20146195-sec-bypass(98607) (vdb-entry, x_refsource_XF)
psirt@us.ibm.com (x_refsource_CONFIRM, Patch, Vendor Advisory)
IT04249 (vendor-advisory, x_refsource_AIXAPAR, Vendor Advisory)

Frequently asked questions

What is CVE-2014-6195?: CVE-2014-6195 is a vulnerability in Ibm Aix, classified under Improper Access Control. Published 2015-02-14.
Is CVE-2014-6195 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.