CVE-2016-6044

EUVD-2016-6978
IBM Tivoli Storage Manager Operations Center could allow an authenticated attacker to enable or disable the application's REST API, which may let the attacker violate security policy.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 MEDIUM
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 31%
Affected Products (NVD)
VendorProductVersion
ibmtivoli_storage_manager
6.4.1
ibmtivoli_storage_manager
6.4.1.1
ibmtivoli_storage_manager
6.4.2
ibmtivoli_storage_manager
6.4.2.1
ibmtivoli_storage_manager
6.4.2.2
ibmtivoli_storage_manager
6.4.2.3
ibmtivoli_storage_manager
6.4.2.4
ibmtivoli_storage_manager
7.1
ibmtivoli_storage_manager
7.1.0.1
ibmtivoli_storage_manager
7.1.0.2
ibmtivoli_storage_manager
7.1.1.1
ibmtivoli_storage_manager
7.1.1.2
ibmtivoli_storage_manager
7.1.3
ibmtivoli_storage_manager
7.1.3.1
ibmtivoli_storage_manager
7.1.3.2
ibmtivoli_storage_manager
7.1.4
ibmtivoli_storage_manager
7.1.4.1
ibmtivoli_storage_manager
7.1.4.2
ibmtivoli_storage_manager
7.1.7
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.ibm.com/support/docview.wss?uid=swg21995754
http://www.securityfocus.com/bid/95091
http://www.ibm.com/support/docview.wss?uid=swg21995754
http://www.securityfocus.com/bid/95091