Vulnerabilities > IBM > Tivoli Storage Manager > 8.1.1

DATE CVE VULNERABILITY TITLE RISK
2017-10-05 CVE-2017-1339 Use of a Broken or Risky Cryptographic Algorithm vulnerability in IBM Tivoli Storage Manager
IBM Spectrum Protect 7.1 and 8.1 (formerly Tivoli Storage Manager) Server uses weak encryption for the password.
local
low complexity
ibm CWE-327
4.4
4.4
2017-10-05 CVE-2016-8937 Improper Authentication vulnerability in IBM Tivoli Storage Manager
The IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 and 8.1) default authentication protocol is vulnerable to a brute force attack due to disclosing too much information during authentication.
network
low complexity
ibm CWE-287
critical
 9.8
9.8
2017-06-07 CVE-2016-8939 Information Exposure vulnerability in IBM Tivoli Storage Manager
IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 and 8.1) clients/agents store password information in the Windows Registry in a manner which can be compromised.
local
low complexity
ibm CWE-200
5.5
5.5