CVE-2020-4202
CVE-2020-4202
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5EPSS 1.0%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
23 Apr 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM UrbanCode Deploy (UCD) 7.0.3.0 and 7.0.4.0 could allow an authenticated user to impersonate another user if the server is configured to enable Distributed Front End (DFE). IBM X-Force ID: 174955.
CVSS:3.0/S:U/AV:N/UI:N/C:L/A:L/I:L/PR:L/AC:H/RL:O/RC:C/E:U
Affected products
IBM · UrbanCode DeployWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →