CVE-2013-6713

EUVD-2013-6515
The Data Protection for VMware component in IBM Tivoli Storage Manager for Virtual Environments (TSMVE) 6.3 through 7.1.0.2 does not properly check authorization for backup and restore operations, which allows local users to obtain sensitive VM data or cause a denial of service (disk consumption) via unspecified GUI actions.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.1 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:S/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 15%
Affected Products (NVD)
VendorProductVersion
ibmtivoli_storage_manager_for_virtual_environments
6.3.0.0
ibmtivoli_storage_manager_for_virtual_environments
6.3.1.0
ibmtivoli_storage_manager_for_virtual_environments
6.3.2.0
ibmtivoli_storage_manager_for_virtual_environments
6.3.2.1
ibmtivoli_storage_manager_for_virtual_environments
6.3.3.0
ibmtivoli_storage_manager_for_virtual_environments
6.4.0.0
ibmtivoli_storage_manager_for_virtual_environments
6.4.1.0
ibmtivoli_storage_manager_for_virtual_environments
7.1.0.0
ibmtivoli_storage_manager_for_virtual_environments
7.1.0.1
ibmtivoli_storage_manager_for_virtual_environments
7.1.0.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg21673051
https://exchange.xforce.ibmcloud.com/vulnerabilities/89055
http://www-01.ibm.com/support/docview.wss?uid=swg21673051
https://exchange.xforce.ibmcloud.com/vulnerabilities/89055