Vulnerability Description
IBM Tivoli Storage Manager HSM for Windows displays the encrypted Tivoli Storage Manager password in application trace output if the password access option is prompt and the password is changed.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Tivoli Storage Manager For Space Management | <= 7.1.4.1 |
| Microsoft | Windows | All versions |
Related Weaknesses (CWE)
References
- http://www.ibm.com/support/docview.wss?uid=swg21988728PatchVendor Advisory
- http://www.securityfocus.com/bid/92534Third Party AdvisoryVDB Entry
- http://www.ibm.com/support/docview.wss?uid=swg21988728PatchVendor Advisory
- http://www.securityfocus.com/bid/92534Third Party AdvisoryVDB Entry
FAQ
What is CVE-2016-5918?
CVE-2016-5918 is a vulnerability with a CVSS score of 4.7 (MEDIUM). IBM Tivoli Storage Manager HSM for Windows displays the encrypted Tivoli Storage Manager password in application trace output if the password access option is prompt and the password is changed.
How severe is CVE-2016-5918?
CVE-2016-5918 has been rated MEDIUM with a CVSS base score of 4.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-5918?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Tivoli Storage Manager For Space Management, Microsoft Windows.