PT-2020-20217 · Netapp · Active Iq Unified Manager

Published

2020-08-03

Updated

2020-08-12

CVE-2020-8574

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Active IQ Unified Manager for Linux versions prior to 9.6

Description The issue allows unauthorized code execution to local users due to the Java Management Extension Remote Method Invocation (JMX RMI) service being enabled.

Recommendations For versions prior to 9.6, consider disabling the JMX RMI service as a temporary workaround until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2020-8574

Affected Products

Active Iq Unified Manager

PT-2020-20217 · Netapp · Active Iq Unified Manager

CVE-2020-8574

Related Identifiers

Affected Products

References · 3