PT-2020-18206 · Ibm · Ibm Spectrum Protect Operations Center

Published

2020-09-02

Updated

2020-09-10

CVE-2020-4693

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions IBM Spectrum Protect Operations Center versions 7.1.0.000 through 7.1.10 IBM Spectrum Protect Operations Center versions 8.1.0.000 through 8.1.9

Description The issue is caused by improper validation of data prior to export, which may allow an attacker to execute arbitrary code on the system.

Recommendations For versions 7.1.0.000 through 7.1.10, update to a version outside of this range to resolve the issue. For versions 8.1.0.000 through 8.1.9, update to a version outside of this range to resolve the issue.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2020-4693

Affected Products

Ibm Spectrum Protect Operations Center

PT-2020-18206 · Ibm · Ibm Spectrum Protect Operations Center

CVE-2020-4693

Weakness Enumeration

Related Identifiers

Affected Products

References · 4