CVE-2011-1372

EPSS 0.1%
Published 28.11.2011 11:55:08
Last modified 11.04.2025 00:51:21
Source cve@mitre.org
Teams watchlist Login
Open Login

The Web User Interface on the IBM TS3100 and TS3200 tape libraries with firmware before A.60 allows remote attackers to bypass authentication and obtain administrative access via unspecified vectors.

Affected products Warnungen 0 Metrics 2 CWE 1 References 5

Data is provided by the National Vulnerability Database (NVD)

Ibm ≫ Ts3100 Tape Library Firmware Version <= a.40

Ibm ≫ Ts3200 Tape Library Firmware Version <= a.40

Ibm ≫ Ts3100 Tape Library

Ibm ≫ Ts3200 Tape Library

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.1%	0.249

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

http://www.ibm.com/support/docview.wss?uid=ssg1S1003938

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/71026

https://nvd.nist.gov/vuln/detail/CVE-2011-1372

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2011-1372

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2011-1372

EUVD