Vulnerability Description
The Web User Interface on the IBM TS3100 and TS3200 tape libraries with firmware before A.60 allows remote attackers to bypass authentication and obtain administrative access via unspecified vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Ts3100 Tape Library Firmware | <= a.40 |
| Ibm | Ts3200 Tape Library Firmware | <= a.40 |
| Ibm | Ts3100 Tape Library | All versions |
| Ibm | Ts3200 Tape Library | All versions |
Related Weaknesses (CWE)
References
- http://www.ibm.com/support/docview.wss?uid=ssg1S1003938Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/71026
- http://www.ibm.com/support/docview.wss?uid=ssg1S1003938Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/71026
FAQ
What is CVE-2011-1372?
CVE-2011-1372 is a vulnerability with a CVSS score of 6.8 (MEDIUM). The Web User Interface on the IBM TS3100 and TS3200 tape libraries with firmware before A.60 allows remote attackers to bypass authentication and obtain administrative access via unspecified vectors.
How severe is CVE-2011-1372?
CVE-2011-1372 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-1372?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Ts3100 Tape Library Firmware, Ibm Ts3200 Tape Library Firmware, Ibm Ts3100 Tape Library, Ibm Ts3200 Tape Library.