CVE-2020-4882

Summary

IBM Planning Analytics 2.0 could be vulnerable to a Server-Side Request Forgery (SSRF) attack by constucting URLs from user-controlled data . This could enable attackers to make arbitrary requests to the internal network or to the local file system. IBM X-Force ID: 190852.

Affected Software

VendorProductVersion RangeStatus
IBMPlanning Analytics2.0affected

Weaknesses

  • Gain Access

ADP Enrichment

CVE Program Container

Additional References

References