← back
CVE-2020-4270

CVE-2020-4270

CVSS 8.4 HIGHEPSS 0.5%
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 8.4EPSS 0.5%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
15 Apr 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM QRadar 7.3.0 to 7.3.3 Patch 2 could allow a local user to gain escalated privileges due to weak file permissions. IBM X-ForceID: 175846.
CVSS:3.0/AV:L/UI:N/AC:L/PR:N/C:H/S:U/A:H/I:H/RL:O/E:U/RC:C
Affected products
IBM · Qradar