Diamondback Tape Library Firmware

diamondback_tape_library_firmware

Vendor: Ibm • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-36239 1Ibm 2Diamondback Tape Library Firmware Storage Ts4500 Library Firmware Dec 11, 2025 Sep 27, 2025 N/A· v4 6.1 MEDIUM· v3 N/A· v2 IBM Storage TS4500 Library 1.11.0.0 and 2.11.0.0 is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended...Show more IBM Storage TS4500 Library 1.11.0.0 and 2.11.0.0 is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.Show less
CVE-2024-43192 1Ibm 2Diamondback Tape Library Firmware Storage Ts4500 Library Firmware Dec 11, 2025 Sep 27, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 IBM Storage TS4500 Library 1.11.0.0 and 2.11.0.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
CVE-2025-36088 1Ibm 2Diamondback Tape Library Firmware Storage Ts4500 Library Firmware Dec 1, 2025 Aug 15, 2025 N/A· v4 5.4 MEDIUM· v3 N/A· v2 IBM TS4500 1.11.0.0-D00, 1.11.0.1-C00, 1.11.0.2-C00, and 1.10.00-F00 web GUI is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus al...Show more IBM TS4500 1.11.0.0-D00, 1.11.0.1-C00, 1.11.0.2-C00, and 1.10.00-F00 web GUI is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.Show less