CVE-2013-5371

The client in IBM Tivoli Storage Manager (TSM) 6.3.1 and 6.4.0 on Windows does not preserve permissions of Resilient File System (ReFS) files across backup and restore operations, which allows local users to bypass intended access restrictions via standard filesystem operations.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
2.1 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
ibmCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 12%
VendorProductVersion
ibmtivoli_storage_manager
6.3.1
ibmtivoli_storage_manager
6.4.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg1IC92933
http://www.ibm.com/support/docview.wss?uid=swg21662608
https://exchange.xforce.ibmcloud.com/vulnerabilities/86661
http://www-01.ibm.com/support/docview.wss?uid=swg1IC92933
http://www.ibm.com/support/docview.wss?uid=swg21662608
https://exchange.xforce.ibmcloud.com/vulnerabilities/86661