CVE-2013-6714

Name of the Vulnerable Software and Affected Versions IBM Tivoli Storage FlashCopy Manager versions 3.1 through 4.1.0.1

Description The issue concerns the FlashCopy Manager for VMware component, which fails to properly check authorization for certain operations. This allows local users to potentially obtain sensitive data or cause a denial of service, such as data overwrite or disk consumption, by performing unspecified actions through the GUI.

Recommendations For versions 3.1 through 4.1.0.1, consider restricting access to the FlashCopy Manager for VMware component to minimize the risk of unauthorized data access or denial of service until a proper fix is applied. As a temporary workaround, limit local user privileges to prevent potential exploitation.