CVE-2013-5371

EUVD-2013-5211
The client in IBM Tivoli Storage Manager (TSM) 6.3.1 and 6.4.0 on Windows does not preserve permissions of Resilient File System (ReFS) files across backup and restore operations, which allows local users to bypass intended access restrictions via standard filesystem operations.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
2.1 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 12%
Affected Products (NVD)
VendorProductVersion
ibmtivoli_storage_manager
6.3.1
ibmtivoli_storage_manager
6.4.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg1IC92933
http://www.ibm.com/support/docview.wss?uid=swg21662608
https://exchange.xforce.ibmcloud.com/vulnerabilities/86661
http://www-01.ibm.com/support/docview.wss?uid=swg1IC92933
http://www.ibm.com/support/docview.wss?uid=swg21662608
https://exchange.xforce.ibmcloud.com/vulnerabilities/86661