CVE-2020-4430

Sažetak

IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, and 2.0.4 could allow a remote authenticated attacker to traverse directories on the system. An attacker could send a specially-crafted URL request to download arbitrary files from the system. IBM X-Force ID: 180535.

Reference

https://exchange.xforce.ibmcloud.com/vulnerabilities/180535
https://www.ibm.com/support/pages/node/6206875
https://exchange.xforce.ibmcloud.com/vulnerabilities/180535
https://www.ibm.com/support/pages/node/6206875
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-4430

CVSS

Base:	4.0
Impact:	2.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:S/C:P/I:N/A:N

Zadnje važnije ažuriranje

27-10-2025 - 14:14

Objavljeno

07-05-2020 - 20:15