Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2018-1786

IBM Spectrum Protect 7.1 and 8.1 dsmc and dsmcad processes incorrectly accumulate TCP/IP sockets in a CLOSE_WAIT state. This can cause TCP/IP resource leakage and may result in a denial of service. IBM X-Force ID: 148871.

Published

2018-11-12T16:29:00.280

Last Modified

2024-11-21T04:00:22.090

Status

Modified

Source

[email protected]

Severity

CVSSv3.0: 5.3 (MEDIUM)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: NONE
  • Integrity Impact: NONE
  • Availability Impact: PARTIAL
Exploitability Score

10.0

Impact Score

2.9

Weaknesses
  • Type: Primary
    CWE-400
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application ibm spectrum_protect ≤ 8.1.6.0 Yes
Application ibm tivoli_storage_manager ≤ 7.1.8.3 Yes
Application ibm spectrum_protect_manager_for_virtual_environments_data_protection_for_vmware ≤ 8.1.6.0 Yes
Application ibm tivoli_storage_manager_for_virtual_environments_data_protection_for_vmware ≤ 7.1.8.3 Yes
Operating System linux linux_kernel - No
Operating System microsoft windows - No
Application ibm spectrum_protect_for_virtual_environments_data_protection_for_hyper-v ≤ 8.1.6.0 Yes
Application ibm tivoli_storage_manager_for_virtual_environments_data_protection_for_hyper-v ≤ 7.1.8.0 Yes
Operating System microsoft windows - No
References