CVE-2015-7426

Name of the Vulnerable Software and Affected Versions IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware versions 7.1 through 7.1.3.0 Tivoli Storage FlashCopy Manager for VMware versions 4.1 through 4.1.3.0

Description The issue allows remote attackers to execute arbitrary OS commands. This is due to the failure to neutralize special elements used in the operating system command. The exploitation of this issue can allow a remote attacker to execute arbitrary operating system commands.

Recommendations For IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware versions 7.1 through 7.1.3.0, update to version 7.1.3.0 or later. For Tivoli Storage FlashCopy Manager for VMware versions 4.1 through 4.1.3.0, update to version 4.1.3.0 or later.