CVE-2020-4430

Sažetak

IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, and 2.0.4 could allow a remote authenticated attacker to traverse directories on the system. An attacker could send a specially-crafted URL request to download arbitrary files from the system. IBM X-Force ID: 180535.

Reference

https://exchange.xforce.ibmcloud.com/vulnerabilities/180535
https://www.ibm.com/support/pages/node/6206875
http://seclists.org/fulldisclosure/2024/Nov/0
http://seclists.org/fulldisclosure/2024/Nov/1
https://exchange.xforce.ibmcloud.com/vulnerabilities/180535
https://www.ibm.com/support/pages/node/6206875
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-4430

CVSS

Base:	4.0
Impact:	2.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:S/C:P/I:N/A:N

Zadnje važnije ažuriranje

14-01-2026 - 19:20

Objavljeno

07-05-2020 - 20:15