CVE-2016-6044 Information

Description

IBM Tivoli Storage Manager Operations Center could allow an authenticated attacker to enable or disable the application’s REST API which may let the attacker violate security policy.

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Reference

http://www.ibm.com/support/docview.wss?uid=swg21995754 http://www.securityfocus.com/bid/95091

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

LOW

Base Score

NONE

Base Severity

4.3