CVE-2020-4983

Опубликовано: 20 янв. 2021

Источник: nvd

CVSS3: 7.4

CVSS3: 7.8

CVSS2: 4.6

EPSS Низкий

Описание

IBM Spectrum LSF 10.1 and IBM Spectrum LSF Suite 10.2 could allow a user on the local network who has privileges to submit LSF jobs to execute arbitrary commands. IBM X-Force ID: 192586.

Ссылки

https://exchange.xforce.ibmcloud.com/vulnerabilities/192586
VDB Entry
Vendor Advisory
https://www.hpcsec.com/2021/01/14/cve-2020-4983/
Patch
Third Party Advisory
https://www.ibm.com/support/pages/node/6395478
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/192586
VDB Entry
Vendor Advisory
https://www.hpcsec.com/2021/01/14/cve-2020-4983/
Patch
Third Party Advisory
https://www.ibm.com/support/pages/node/6395478
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:spectrum_lsf:10.1:*:*:*:*:*:*:*

cpe:2.3:a:ibm:spectrum_lsf_suite:10.2:*:*:*:*:*:*:*

EPSS

Процентиль: 18%

0.00056

Низкий

7.4 High

CVSS3

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-8wg7-c4m9-6mmg

github

больше 3 лет назад

IBM Spectrum LSF 10.1 and IBM Spectrum LSF Suite 10.2 could allow a user on the local network who has privileges to submit LSF jobs to execute arbitrary commands. IBM X-Force ID: 192586.

EPSS

Процентиль: 18%

0.00056

Низкий

7.4 High

CVSS3

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-287