CVE-2021-39040
6.3
CVSS:3.0/I:H/UI:R/A:N/C:L/AV:N/AC:L/PR:L/S:U/RC:C/RL:O/E:U
Summary
IBM Planning Analytics Workspace 2.0 could be vulnerable to malicious file upload by not validating the file types or sizes. Attackers can make use of this weakness and upload malicious executable files into the system and it can be sent to victim for performing further attacks. IBM X-Force ID: 214025.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM | Planning Analytics Workspace | 2.0 | affected |
Weaknesses
- Gain Access
ADP Enrichment
CVE Program Container
Additional References
- https://www.ibm.com/support/pages/node/6574003
- https://exchange.xforce.ibmcloud.com/vulnerabilities/214025
References
- https://www.ibm.com/support/pages/node/6574003
- https://exchange.xforce.ibmcloud.com/vulnerabilities/214025
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.