CVE-2016-5918

IBM Tivoli Storage Manager HSM for Windows displays the encrypted Tivoli Storage Manager password in application trace output if the password access option is prompt and the password is changed.

Published: Feb 8, 2017
Updated: Apr 13, 2023
CVE: CVE-2016-5918
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.7
AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

Severity: Low
Score: 1.9
AV:L/AC:M/Au:N/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
ibm / tivoli_storage_manager_for_space_management	-	7.1.4.1.x
ibm / tivoli_storage_manager_for_space_management	7.1.0.0	7.1.0.0.x
ibm / tivoli_storage_manager_for_space_management	-	6.4.3.0.x
ibm / tivoli_storage_manager_for_space_management	6.4.0.0	6.4.0.0.x
ibm / tivoli_storage_manager_for_space_management	-	6.3.x

http://www.ibm.com/support/docview.wss?uid=swg21988728
http://www.securityfocus.com/bid/92534

Vulnerability Database

CVE-2016-5918