10
CVE-2015-1986
- EPSS 25.03%
- Veröffentlicht 30.06.2015 15:59:16
- Zuletzt bearbeitet 12.04.2025 10:46:40
- Quelle psirt@us.ibm.com
- Teams Watchlist Login
- Unerledigt Login
The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to execute arbitrary commands via unspecified vectors, a different vulnerability than CVE-2015-1938.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Tivoli Storage Manager Fastback Version6.1.0.0
Ibm ≫ Tivoli Storage Manager Fastback Version6.1.1.0
Ibm ≫ Tivoli Storage Manager Fastback Version6.1.7.2
Ibm ≫ Tivoli Storage Manager Fastback Version6.1.8.0
Ibm ≫ Tivoli Storage Manager Fastback Version6.1.8.1
Ibm ≫ Tivoli Storage Manager Fastback Version6.1.9.0
Ibm ≫ Tivoli Storage Manager Fastback Version6.1.9.1
Ibm ≫ Tivoli Storage Manager Fastback Version6.1.10.0
Ibm ≫ Tivoli Storage Manager Fastback Version6.1.10.1
Ibm ≫ Tivoli Storage Manager Fastback Version6.1.11.0
Ibm ≫ Tivoli Storage Manager Fastback Version6.1.11.1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 25.03% | 0.959 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection')
The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.