Lucene search

IbmCVELIST:CVE-2020-4693

HistorySep 02, 2020 - 6:25 p.m.

CVE-2020-4693

2020-09-0218:25:25

ibm

www.cve.org

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C

AI Score

9.3

Confidence

High

EPSS

0.003

Percentile

70.0%

JSON

IBM Spectrum Protect Operations Center 7.1.0.000 through 7.1.10 and 8.1.0.000 through 8.1.9 may allow an attacker to execute arbitrary code on the system, caused by improper validation of data prior to export. IBM X-Force ID: 186782.

CNA Affected

[
  {
    "product": "Spectrum Protect Operations Center",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "7.1.0.000"
      },
      {
        "status": "affected",
        "version": "8.1.0.000"
      },
      {
        "status": "affected",
        "version": "7.1.10"
      },
      {
        "status": "affected",
        "version": "8.1.9"
      }
    ]
  }
]

References

exchange.xforce.ibmcloud.com/vulnerabilities/186782

www.ibm.com/support/pages/node/6325341

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C

AI Score

9.3

Confidence

High

EPSS

0.003

Percentile

70.0%

JSON

Related for CVELIST:CVE-2020-4693