cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2016-3059,https://securityvulnerability.io/vulnerability/CVE-2016-3059,,IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server (aka IBM Spectrum Protect for Databases) 6.3 before 6.3.1.7 and 6.4 before 6.4.1.9 and Tivoli Storage FlashCopy Manager for Microsoft SQL Server (aka IBM Spectrum Protect Snapshot) 3.1 before 3.1.1.7 and 3.2 before 3.2.1.9 allow local users to discover a cleartext SQL Server password by reading the Task List in the MMC GUI.,IBM,"Tivoli Storage Flashcopy Manager For Sql Server,Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server",6.2,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2016-08-08T01:00:00.000Z,0
CVE-2015-7425,https://securityvulnerability.io/vulnerability/CVE-2015-7425,,"The Data Protection component in the VMware vSphere GUI in IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware (aka Spectrum Protect for Virtual Environments) 6.3 before 6.3.2.5, 6.4 before 6.4.3.1, and 7.1 before 7.1.4 and Tivoli Storage FlashCopy Manager for VMware (aka Spectrum Protect Snapshot) 3.1 before 3.1.1.3, 3.2 before 3.2.0.6, and 4.1 before 4.1.4 allows remote attackers to obtain administrative privileges via a crafted URL that triggers back-end function execution.",IBM,"Tivoli Storage Flashcopy Manager For Vmware,Tivoli Storage Manager For Virtual Environments Data Protection For Vmware",10,CRITICAL,0.007089999970048666,false,,false,false,false,,,false,false,,2016-02-21T18:00:00.000Z,0
CVE-2015-1988,https://securityvulnerability.io/vulnerability/CVE-2015-1988,,"Cross-site scripting (XSS) vulnerability in IBM Tivoli Storage Manger for Virtual Environments: Data Protection for VMware 6.3 before 6.3.2.5, 6.4 before 6.4.3.1, and 7.1 before 7.1.3 and Tivoli Storage FlashCopy Manager for VMware 3.1 before 3.1.1.3, 3.2 before 3.2.0.6, and 4.1 before 4.1.3.0 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.",IBM,Tivoli Storage Flashcopy Manager,,,0.0006300000241026282,false,,false,false,false,,,false,false,,2015-10-04T01:00:00.000Z,0
CVE-2015-4950,https://securityvulnerability.io/vulnerability/CVE-2015-4950,,"The mailbox-restore feature in IBM Tivoli Storage Manager for Mail: Data Protection for Microsoft Exchange Server 6.1 before 6.1.3.6, 6.3 before 6.3.1.3, 6.4 before 6.4.1.4, and 7.1 before 7.1.0.2; Tivoli Storage FlashCopy Manager: FlashCopy Manager for Microsoft Exchange Server 2.1, 2.2, 3.1 before 3.1.1.5, 3.2 before 3.2.1.7, and 4.1 before 4.1.1; and Tivoli Storage Manager FastBack for Microsoft Exchange 6.1 before 6.1.5.4 does not ensure that the correct mailbox is selected, which allows remote authenticated users to obtain sensitive information via a duplicate alias name.",IBM,"Tivoli Storage Flashcopy Manager For Microsoft Exchange Server,Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server,Tivoli Storage Fastback For Microsoft Exchange",,,0.001180000021122396,false,,false,false,false,,,false,false,,2015-08-23T14:00:00.000Z,0
CVE-2015-4949,https://securityvulnerability.io/vulnerability/CVE-2015-4949,,"IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server 7.1 before 7.1.2, Tivoli Storage Manager for Mail: Data Protection for Microsoft Exchange Server 7.1 before 7.1.2, and Tivoli Storage FlashCopy Manager 4.1 before 4.1.2 place cleartext passwords in exception messages, which allows physically proximate attackers to obtain sensitive information by reading GUI pop-up windows, a different vulnerability than CVE-2015-6557.",IBM,"Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server,Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server,Tivoli Storage Flashcopy Manager",,,0.0005099999834783375,false,,false,false,false,,,false,false,,2015-08-23T01:00:00.000Z,0
CVE-2015-6557,https://securityvulnerability.io/vulnerability/CVE-2015-6557,,"IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server 5.5 before 5.5.6.1, 6.3 before 6.3.1.5, 6.4 before 6.4.1.7, and 7.1 before 7.1.2; Tivoli Storage Manager for Mail: Data Protection for Microsoft Exchange Server 5.5 before 5.5.1.1, 6.1 before 6.1.3.7, 6.3 before 6.3.1.5, 6.4 before 6.4.1.7, and 7.1 before 7.1.2; and Tivoli Storage FlashCopy Manager 3.1 before 3.1.1.5, 3.2 before 3.2.1.7, and 4.1 before 4.1.2, when application tracing is used, place cleartext passwords in exception messages, which allows physically proximate attackers to obtain sensitive information by reading trace output, a different vulnerability than CVE-2015-4949.",IBM,"Tivoli Storage Manager For Mail Data Protection For Microsoft Exchange Server,Tivoli Storage Manager For Databases Data Protection For Microsoft Sql Server,Tivoli Storage Flashcopy Manager",,,0.0004400000034365803,false,,false,false,false,,,false,false,,2015-08-23T01:00:00.000Z,0
CVE-2013-6714,https://securityvulnerability.io/vulnerability/CVE-2013-6714,,"The FlashCopy Manager for VMware component in IBM Tivoli Storage FlashCopy Manager 3.1 through 4.1.0.1 does not properly check authorization for backup and restore operations, which allows local users to obtain sensitive VM data or cause a denial of service (data overwrite or disk consumption) via unspecified GUI actions.",IBM,Tivoli Storage Flashcopy Manager,,,0.0004199999966658652,false,,false,false,false,,,false,false,,2014-05-26T19:00:00.000Z,0
CVE-2013-3976,https://securityvulnerability.io/vulnerability/CVE-2013-3976,,"The (1) Data Protection for Exchange component 6.1 before 6.1.3.4 and 6.3 before 6.3.1 in IBM Tivoli Storage Manager for Mail and the (2) FlashCopy Manager for Exchange component 2.2 and 3.1 before 3.1.1 in IBM Tivoli Storage FlashCopy Manager do not properly constrain mailbox contents during certain PST restore operations, which allows remote authenticated users to read the personal e-mail of other users in opportunistic circumstances by launching an e-mail client after an administrator performs a multiple-mailbox restore.",IBM,"Flashcopy Manager,Tivoli Storage Manager For Mail,Data Protection,Tivoli Storage Flashcopy Manager",,,0.0011500000255182385,false,,false,false,false,,,false,false,,2014-03-26T10:00:00.000Z,0