CVE-2020-4588

Опубликовано: 30 окт. 2020

Источник: nvd

CVSS3: 7.7

CVSS3: 7.8

CVSS2: 6.8

EPSS Низкий

Описание

IBM i2 iBase 8.9.13 could allow an attacker to upload arbitrary executable files which, when executed by an unsuspecting victim could result in code execution. IBM X-Force ID: 184579.

Ссылки

https://exchange.xforce.ibmcloud.com/vulnerabilities/184579
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/6357037
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/184579
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/6357037
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:ibm:i2_ibase:*:*:*:*:*:*:*:*

Версия до 8.9.13 (включая)

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 58%

0.00366

Низкий

7.7 High

CVSS3

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-434

Связанные уязвимости

GHSA-4v2v-7w44-wqvx

CVSS3: 7.8

github

больше 3 лет назад

IBM i2 iBase 8.9.13 could allow an attacker to upload arbitrary executable files which, when executed by an unsuspecting victim could result in code execution. IBM X-Force ID: 184579.

EPSS

Процентиль: 58%

0.00366

Низкий

7.7 High

CVSS3

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-434