CVE-2016-8940
CVE-2016-8940
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 0.9%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
07 mar 2017Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
IBM Tivoli Storage Manager (IBM Spectrum Protect) 6.1, 6.2, 6.3, and 7.1 does not perform sufficient authority checking on SQL queries. As a result, an attacker is able to submit SQL queries that access database tables that are not intended for access or use by administrators. The access of these product specific database tables may allow access to passwords or other sensitive information for the product. IBM Reference #: 1998946.
Productos afectados
IBM Corporation · Tivoli Storage Manager¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →