CVE-2020-4729

Name of the Vulnerable Software and Affected Versions IBM Counter Fraud Management for Safer Payments versions 5.7.0.00 through 5.7.0.10 IBM Counter Fraud Management for Safer Payments versions 6.0.0.00 through 6.0.0.07 IBM Counter Fraud Management for Safer Payments versions 6.1.0.00 through 6.1.0.05 IBM Counter Fraud Management for Safer Payments versions 6.2.0.00 through 6.2.1.00

Description The issue allows an authenticated attacker under special circumstances to send multiple specially crafted API requests that could cause the application to crash.

Recommendations For versions 5.7.0.00 through 5.7.0.10, consider restricting access to API endpoints to minimize the risk of exploitation. For versions 6.0.0.00 through 6.0.0.07, consider restricting access to API endpoints to minimize the risk of exploitation. For versions 6.1.0.00 through 6.1.0.05, consider restricting access to API endpoints to minimize the risk of exploitation. For versions 6.2.0.00 through 6.2.1.00, consider restricting access to API endpoints to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.