CVE-2020-4428

Summary

IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, and 2.0.4 could allow a remote authenticated attacker to execute arbitrary commands on the system. IBM X-Force ID: 180533.

Affected Software

VendorProductVersion RangeStatus
IBMData Risk Manager2.0.1affected
IBMData Risk Manager2.0.2affected
IBMData Risk Manager2.0.3affected
IBMData Risk Manager2.0.4affected
IBMData Risk Manager2.0.5affected
IBMData Risk Manager2.0.6affected

Weaknesses

  • Gain Access

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: no
    • Technical Impact: total

Additional References

References