HIGH🇵🇱 Wersja polska

CVE-2016-6033

CVSS 8.8v3.0pub. 2017-02-15upd. 2026-05-13

IBM Tivoli Storage Manager for Virtual Environments 7.1 (VMware) is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM Reference #: 1995545.

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  • IBM Tivoli Storage Flashcopy Manager For VMware

    APP
    Ibm
    4.1.0.04.1.14.1.24.1.34.1.44.1.4.04.1.4.14.1.64.1.6.0
  • IBM Tivoli Storage Manager For Virtual Environments Data Protection For VMware

    APP
    Ibm
    7.1.07.1.17.1.27.1.37.1.47.1.4.07.1.67.1.6.27.1.6.3
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2015-7425CRITICAL10.0ten sam produkt

The Data Protection component in the VMware vSphere GUI in IBM Tivoli Storage Manager for Virtual Environments...

CVE-2018-1786MEDIUM5.3ten sam produkt

IBM Spectrum Protect 7.1 and 8.1 dsmc and dsmcad processes incorrectly accumulate TCP/IP sockets in a CLOSE_WA...

CVE-2016-6034MEDIUM6.8ten sam produkt

IBM Tivoli Storage Manager for Virtual Environments (VMware) could disclose the Windows domain credentials to ...

CVE-2016-6110MEDIUM6.5ten sam produkt

IBM Tivoli Storage Manager discloses unencrypted login credentials to Vmware vCenter that could be obtained by...

CVE-2022-47986CRITICAL9.8⚠ KEVten sam vendor

IBM Aspera Faspex 4.4.2 Patch Level 1 and earlier could allow a remote attacker to execute arbitrary code on t...