CVE-2019-4071

Summary

IBM Tivoli Storage Productivity Center (IBM Spectrum Control Standard Edition 5.2.1 through 5.2.17) could allow a remote attacker to execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 157063.

Affected Software

VendorProductVersion RangeStatus
IBMSpectrum Control Standard Edition5.2.1affected
IBMSpectrum Control Standard Edition5.2.8affected
IBMSpectrum Control Standard Edition5.2.11affected
IBMSpectrum Control Standard Edition5.2.12affected
IBMSpectrum Control Standard Edition5.2.13affected
IBMSpectrum Control Standard Edition5.2.14affected
IBMSpectrum Control Standard Edition5.2.15affected
IBMSpectrum Control Standard Edition5.2.16affected
IBMSpectrum Control Standard Edition5.2.10.1affected
IBMSpectrum Control Standard Edition5.2.15.2affected
IBMSpectrum Control Standard Edition5.2.17.0affected
IBMSpectrum Control Standard Edition5.2.17.1affected

Weaknesses

  • Gain Access

ADP Enrichment

CVE Program Container

Additional References

References