← back
CVE-2019-4541

CVE-2019-4541

CVSS 6.5 MEDIUMEPSS 1.3%
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6.5EPSS 1.3%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
04 Feb 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM Security Directory Server 6.4.0 uses incomplete blacklisting for input validation which allows attackers to bypass application controls resulting in direct impact to the system and data integrity. IBM X-Force ID: 165814.
CVSS:3.0/PR:H/S:U/UI:N/C:H/I:N/A:H/AV:N/AC:L/RL:O/E:U/RC:C
Affected products
IBM · Security Directory Server

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/165814https://www.ibm.com/support/pages/node/1288660