Vulnerability Details : CVE-2010-4606
Unspecified vulnerability in the Space Management client in the Hierarchical Storage Management (HSM) component in IBM Tivoli Storage Manager (TSM) 5.4.x before 5.4.3.4, 5.5.x before 5.5.3, 6.1.x before 6.1.4, and 6.2.x before 6.2.2 on Unix and Linux allows remote attackers to execute arbitrary commands via unknown vectors, related to a "script execution vulnerability."
Exploit prediction scoring system (EPSS) score for CVE-2010-4606
Probability of exploitation activity in the next 30 days: 1.37%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 86 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2010-4606
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2010-4606
-
http://www.vupen.com/english/advisories/2010/3251
Webmail | OVH- OVHBroken Link;Vendor Advisory
-
http://www-01.ibm.com/support/docview.wss?uid=swg1IC69150
IBM notice: The page you requested cannot be displayedBroken Link
-
http://www.ibm.com/support/docview.wss?uid=swg21454745
IBM notice: The page you requested cannot be displayedBroken Link
-
http://securitytracker.com/id?1024901
IBM Tivoli Storage Manager Lets Local Users Gain Elevated Privileges - SecurityTrackerBroken Link;Third Party Advisory;VDB Entry
Products affected by CVE-2010-4606
- cpe:2.3:a:ibm:tivoli_storage_manager:*:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_storage_manager:*:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_storage_manager:*:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_storage_manager:*:*:*:*:*:*:*:*