What is the severity of CVE-2015-7425?

CVE-2015-7425 has a high severity rating, indicating significant risks associated with its exploitation.

How do I fix CVE-2015-7425?

To fix CVE-2015-7425, upgrade to the patched versions provided by IBM, which are 6.3.2.5 or later, 6.4.3.1 or later, and 7.1.4 or later.

What impact does CVE-2015-7425 have on my system?

CVE-2015-7425 may allow unauthorized access to sensitive data, impacting data integrity and confidentiality.

When was CVE-2015-7425 reported?

CVE-2015-7425 was publicly disclosed in October 2015.

Vulnerability/
CVE-2015-7425

critical

CWE

264

21/2/2016

6/8/2024

CVE-2015-7425

First published: Sun Feb 21 2016(Updated: )

The Data Protection component in the VMware vSphere GUI in IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware (aka Spectrum Protect for Virtual Environments) 6.3 before 6.3.2.5, 6.4 before 6.4.3.1, and 7.1 before 7.1.4 and Tivoli Storage FlashCopy Manager for VMware (aka Spectrum Protect Snapshot) 3.1 before 3.1.1.3, 3.2 before 3.2.0.6, and 4.1 before 4.1.4 allows remote attackers to obtain administrative privileges via a crafted URL that triggers back-end function execution.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM Tivoli Storage FlashCopy Manager for VMware	=3.1
IBM Tivoli Storage FlashCopy Manager for VMware	=3.1.1
IBM Tivoli Storage FlashCopy Manager for VMware	=3.2
IBM Tivoli Storage FlashCopy Manager for VMware	=6.3
IBM Tivoli Storage FlashCopy Manager for VMware	=6.4
IBM Tivoli Storage FlashCopy Manager for VMware	=6.4.2
IBM Tivoli Storage FlashCopy Manager for VMware	=6.4.3
IBM Tivoli Storage Manager for Virtual Environments Data Protection for VMware	=4.1.0
IBM Tivoli Storage Manager for Virtual Environments Data Protection for VMware	=4.1.1
IBM Tivoli Storage Manager for Virtual Environments Data Protection for VMware	=4.1.2
IBM Tivoli Storage Manager for Virtual Environments Data Protection for VMware	=4.1.3
IBM Tivoli Storage Manager for Virtual Environments Data Protection for VMware	=6.3.1
IBM Tivoli Storage Manager for Virtual Environments Data Protection for VMware	=6.3.2
IBM Tivoli Storage Manager for Virtual Environments Data Protection for VMware	=6.4.1
IBM Tivoli Storage Manager for Virtual Environments Data Protection for VMware	=7.1.0
IBM Tivoli Storage Manager for Virtual Environments Data Protection for VMware	=7.1.1
IBM Tivoli Storage Manager for Virtual Environments Data Protection for VMware	=7.1.2
IBM Tivoli Storage Manager for Virtual Environments Data Protection for VMware	=7.1.3

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-7425?
CVE-2015-7425 has a high severity rating, indicating significant risks associated with its exploitation.
What products are affected by CVE-2015-7425?
CVE-2015-7425 affects various versions of IBM Tivoli Storage Manager for Virtual Environments and Tivoli Storage FlashCopy Manager for VMware.
How do I fix CVE-2015-7425?
To fix CVE-2015-7425, upgrade to the patched versions provided by IBM, which are 6.3.2.5 or later, 6.4.3.1 or later, and 7.1.4 or later.
What impact does CVE-2015-7425 have on my system?
CVE-2015-7425 may allow unauthorized access to sensitive data, impacting data integrity and confidentiality.
When was CVE-2015-7425 reported?
CVE-2015-7425 was publicly disclosed in October 2015.

agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/author
agent/last-modified-date
agent/severity
agent/event
agent/description
agent/first-publish-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/ibm
canonical/ibm tivoli storage flashcopy manager for vmware
version/ibm tivoli storage flashcopy manager for vmware/3.1
version/ibm tivoli storage flashcopy manager for vmware/3.1.1
version/ibm tivoli storage flashcopy manager for vmware/3.2
version/ibm tivoli storage flashcopy manager for vmware/6.3
version/ibm tivoli storage flashcopy manager for vmware/6.4
version/ibm tivoli storage flashcopy manager for vmware/6.4.2
version/ibm tivoli storage flashcopy manager for vmware/6.4.3
canonical/ibm tivoli storage manager for virtual environments data protection for vmware
version/ibm tivoli storage manager for virtual environments data protection for vmware/4.1.0
version/ibm tivoli storage manager for virtual environments data protection for vmware/4.1.1
version/ibm tivoli storage manager for virtual environments data protection for vmware/4.1.2
version/ibm tivoli storage manager for virtual environments data protection for vmware/4.1.3
version/ibm tivoli storage manager for virtual environments data protection for vmware/6.3.1
version/ibm tivoli storage manager for virtual environments data protection for vmware/6.3.2
version/ibm tivoli storage manager for virtual environments data protection for vmware/6.4.1
version/ibm tivoli storage manager for virtual environments data protection for vmware/7.1.0
version/ibm tivoli storage manager for virtual environments data protection for vmware/7.1.1
version/ibm tivoli storage manager for virtual environments data protection for vmware/7.1.2
version/ibm tivoli storage manager for virtual environments data protection for vmware/7.1.3

CVE-2015-7425

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-7425?

What products are affected by CVE-2015-7425?

How do I fix CVE-2015-7425?

What impact does CVE-2015-7425 have on my system?

When was CVE-2015-7425 reported?

Company

Resources

Contact