CVE-2013-6713

The Data Protection for VMware component in IBM Tivoli Storage Manager for Virtual Environments (TSMVE) 6.3 through 7.1.0.2 does not properly check authorization for backup and restore operations, which allows local users to obtain sensitive VM data or cause a denial of service (disk consumption) via unspecified GUI actions.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.1 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:S/C:P/I:P/A:P
ibmCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 15%
VendorProductVersion
ibmtivoli_storage_manager_for_virtual_environments
6.3.0.0
ibmtivoli_storage_manager_for_virtual_environments
6.3.1.0
ibmtivoli_storage_manager_for_virtual_environments
6.3.2.0
ibmtivoli_storage_manager_for_virtual_environments
6.3.2.1
ibmtivoli_storage_manager_for_virtual_environments
6.3.3.0
ibmtivoli_storage_manager_for_virtual_environments
6.4.0.0
ibmtivoli_storage_manager_for_virtual_environments
6.4.1.0
ibmtivoli_storage_manager_for_virtual_environments
7.1.0.0
ibmtivoli_storage_manager_for_virtual_environments
7.1.0.1
ibmtivoli_storage_manager_for_virtual_environments
7.1.0.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg21673051
https://exchange.xforce.ibmcloud.com/vulnerabilities/89055
http://www-01.ibm.com/support/docview.wss?uid=swg21673051
https://exchange.xforce.ibmcloud.com/vulnerabilities/89055