Unencrypted Login Credentials Disclosure in IBM Spectrum Protect

Unencrypted Login Credentials Disclosure in IBM Spectrum Protect

CVE-2017-1378 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

IBM Spectrum Protect 7.1 and 8.1 (formerly Tivoli Storage Manager) disclosed unencrypted login credentials to Vmware vCenter in the application trace output which could be obtained by a local user. IBM X-Force ID: 126875.

Learn more about our Cis Benchmark Audit For Vmware.