{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-08-31T00:00:00", "descriptions": [{"lang": "en", "value": "IBM Tivoli Storage Manager for Space Management (aka Spectrum Protect for Space Management) 6.3.x before 6.3.2.6, 6.4.x before 6.4.3.3, and 7.1.x before 7.1.6, when certain dsmsetpw tracing is configured, allows local users to discover an encrypted password by reading application-trace output."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-11-25T19:57:01", "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "shortName": "ibm"}, "references": [{"name": "92723", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/92723"}, {"name": "IT15203", "tags": ["vendor-advisory", "x_refsource_AIXAPAR"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT15203"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21989006"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@us.ibm.com", "ID": "CVE-2016-5927", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "IBM Tivoli Storage Manager for Space Management (aka Spectrum Protect for Space Management) 6.3.x before 6.3.2.6, 6.4.x before 6.4.3.3, and 7.1.x before 7.1.6, when certain dsmsetpw tracing is configured, allows local users to discover an encrypted password by reading application-trace output."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "92723", "refsource": "BID", "url": "http://www.securityfocus.com/bid/92723"}, {"name": "IT15203", "refsource": "AIXAPAR", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT15203"}, {"name": "http://www-01.ibm.com/support/docview.wss?uid=swg21989006", "refsource": "CONFIRM", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21989006"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T01:15:10.702Z"}, "title": "CVE Program Container", "references": [{"name": "92723", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/92723"}, {"name": "IT15203", "tags": ["vendor-advisory", "x_refsource_AIXAPAR", "x_transferred"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT15203"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21989006"}]}]}, "cveMetadata": {"assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "assignerShortName": "ibm", "cveId": "CVE-2016-5927", "datePublished": "2016-09-12T10:00:00", "dateReserved": "2016-06-29T00:00:00", "dateUpdated": "2024-08-06T01:15:10.702Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ibm:tivoli_storage_manager_for_space_management:6.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "1D1030A8-2770-49BF-93EC-8C2FB08C3FCA", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_storage_manager_for_space_management:6.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "2D08D7BF-6C7C-4C53-8D75-506EE7BFA0D8", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_storage_manager_for_space_management:6.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "3ED1C563-6B46-4F15-A3EE-9732A6E135CF", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_storage_manager_for_space_management:6.4.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "58B2465F-1445-4CB2-8130-D97D4524A290", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_storage_manager_for_space_management:6.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "10C95B6A-2B34-4DF9-B4D8-E1DF2986BE20", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_storage_manager_for_space_management:6.4.2:*:*:*:*:*:*:*", "matchCriteriaId": "321D004F-094E-4FBD-9D9D-850EED24A0E3", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_storage_manager_for_space_management:6.4.3:*:*:*:*:*:*:*", "matchCriteriaId": "112C19AF-1BCC-4FBD-AC2D-A8399AF4DA12", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_storage_manager_for_space_management:7.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "0749732C-0F60-4D69-B933-4058C652E31E", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_storage_manager_for_space_management:7.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "6BAA7180-6E41-4836-B03E-5DC0C55E0093", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_storage_manager_for_space_management:7.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "5A267E3D-9912-46E7-9E5C-2FFEB503CA76", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_storage_manager_for_space_management:7.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "74755D0A-28C1-4071-8DD1-FA452F8128B3", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:tivoli_storage_manager_for_space_management:7.1.4:*:*:*:*:*:*:*", "matchCriteriaId": "6000AC77-53A1-4249-89BD-83B7E8E82CC6", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "IBM Tivoli Storage Manager for Space Management (aka Spectrum Protect for Space Management) 6.3.x before 6.3.2.6, 6.4.x before 6.4.3.3, and 7.1.x before 7.1.6, when certain dsmsetpw tracing is configured, allows local users to discover an encrypted password by reading application-trace output."}, {"lang": "es", "value": "IBM Tivoli Storage Manager para Space Management (tambi\u00e9n conocido como Spectrum Protect para Space Management) 6.3.x en versiones anteriores a 6.3.2.6, 6.4.x en versiones anteriores a 6.4.3.3, y 7.1.x en versiones anteriores a 7.1.6, cuando est\u00e1 configurado cierto rastreo dsmsetpw, permite a usuarios locales descubrir una contrase\u00f1a cifrada leyendo el resultado del rastreo de aplicaci\u00f3n."}], "id": "CVE-2016-5927", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.0"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2016-09-12T10:59:02.647", "references": [{"source": "psirt@us.ibm.com", "tags": ["Vendor Advisory"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT15203"}, {"source": "psirt@us.ibm.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21989006"}, {"source": "psirt@us.ibm.com", "url": "http://www.securityfocus.com/bid/92723"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IT15203"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21989006"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/92723"}], "sourceIdentifier": "psirt@us.ibm.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}